CVE-2023-53754

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The Linux kernel contains an issue within the lpfc module related to memory mapping in the lpfc sli4 pci mem setup() function. Specifically, when if type is zero and pci resource start(pdev, PCI 64BIT BAR4) returns false, the drbl regs memmap p pointer is not remapped, leading to a potential null pointer dereference during an iounmap() call. Similarly, when if type is six and pci resource start(pdev, PCI 64BIT BAR4) returns true, drbl regs memmap p may be remapped while ctrl regs memmap p is not, resulting in a resource leak and a potential null pointer dereference during iounmap(). The issue is addressed by adding null checks before the iounmap() function and adjusting goto labels.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.