Javed Hasan

**Name of the Vulnerable Software and Affected Versions** Linux kernel (affected versions not specified) **Description** The issue is related to an array index out of bound exception in the `fc rport prli resp()` function. This exception has been fixed. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Linux kernel (affected versions not specified) **Description** The issue is related to a NULL pointer dereference in the `qedf update link speed()` function when `shost data` is not initialized. This occurs when the `qedf link update()` API is called from QED. The problem results in a NULL pointer dereference when trying to update `supported speeds`. To fix this, a NULL pointer check should be added before dereferencing `shost data`. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.