Joy Gu

**Name of the Vulnerable Software and Affected Versions** Linux kernel (affected versions not specified) **Description** A memory leak has been identified in the Linux kernel, specifically in the scsi: qla2xxx module, within the error path of the `qla2x00 process els()` function. The issue arises from an incorrect change in the code, where `bsg job->request->msgcode == FC BSG HST ELS NOLOGIN` and `bsg job->request->msgcode != FC BSG RPT ELS` were intended, but instead, `bsg job->request->msgcode == FC BSG RPT ELS` was implemented. This mistake can lead to the leaking of the `fcport` structure or the freeing of unallocated memory. The commit `8c0eb596baa5` aimed to fix this issue by changing the comparison operator from `==` to `!=` for `FC BSG RPT ELS`. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.