In the Linux kernel, the following vulnerability has been resolved:
scsi: lpfc: Protect memory leak for NPIV ports sending PLOGI_RJT
There is a potential memory leak in lpfcignoreelscmpl() and lpfcelsrspreject() that was allocated from NPIV PLOGIRJT (lpfcrcvplogi()'s loginmbox).
Check if cmdiocb->contextun.mbox was allocated in lpfcignoreelscmpl(), and then free it back to phba->mboxmempool along with mbox->ctx_buf for service parameters.
For lpfcelsrspreject() failure, free both the ctxbuf for service parameters and the login_mbox.