Li Zhijian

**Name of the Vulnerable Software and Affected Versions** Linux kernel (affected versions not specified) **Description** A vulnerability in the Linux kernel has been resolved. The issue is related to the RDMA/rtrs component, where a missing `deinit()` call triggered a warning when repeatedly connecting and disconnecting the rnbd, resulting in a list add corruption. The problem was introduced by a commit that added a new element but never used it. The vulnerability can cause a warning to be triggered, and it may lead to undefined behavior. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 6.6.74 Description: A vulnerability in the Linux kernel has been resolved, related to the RDMA/rtrs module. The issue was caused by the `ib sge list` variable being declared within the `always invalidate` block, limiting its accessibility and leading to a kernel NULL pointer dereference. The change ensures the variable is available for subsequent operations that require it. The vulnerability was fixed in upstream kernel version 6.6.74. Recommendations: Update to Linux kernel version 6.6.74 or later to resolve the issue. As a temporary workaround, consider restricting access to the RDMA/rtrs module to minimize the risk of exploitation.

Name of the Vulnerable Software and Affected Versions: Linux kernel version 6.10.0-rc2-lizhijian+ Description: A crash occurs during hot-remove of a memory device when a user is accessing the hugetlb, due to dump mapping() accessing an invalid dentry.d name.name. The issue arises because dump mapping() only needs to dump the filename, but it can still run into an invalid dentry.d name.name. To prevent an unnecessary crash, the filename should be retrieved in a safer way. Recommendations: As a temporary workaround, consider disabling the dump mapping() function until a patch is available. Update to a version of the Linux kernel where this issue has been resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Linux kernel (affected versions not specified) **Description** The issue is related to a use-after-free error in the Linux kernel's SCSI core. This error occurs when the `srp exit cmd priv` function is called, and it attempts to access resources associated with the SCSI host that have already been freed. The vulnerability can be exploited to potentially elevate privileges in the system. The error is detected by the KASAN (Kernel Address Sanitizer) tool, which reports a use-after-free bug in the `srp exit cmd priv` function. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.