CVE-2021-47290

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The issue is related to a NULL pointer dereference in the Linux kernel's scsi: target: core component. This occurs when the target complete cmd() function attempts to access the se tpg wwn pointer, which is NULL in the case of LIO's EXTENDED COPY worker. The vulnerability can be triggered by initiating an EXTENDED COPY operation, leading to a kernel NULL pointer dereference. Technical details include the target complete cmd() function and the se tpg wwn pointer.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.