CVE-2023-53038
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2023-53038
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-53038.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2023-53038
- Downstream
- Related
- Published
- 2025-05-02T16:15:22Z
- Modified
- 2025-08-09T20:01:25Z
- Summary
- [none]
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
scsi: lpfc: Check kzalloc() in lpfcsli4cgnparamsread()
If kzalloc() fails in lpfcsli4cgnparamsread(), then we rely on lpfcreadobject()'s routine to NULL check pdata.
Currently, an early return error is thrown from lpfcreadobject() to protect us from NULL ptr dereference, but the errno code is -ENODEV.
Change the errno code to a more appropriate -ENOMEM.
- References