CVE-2025-68745
- Source
- https://cve.org/CVERecord?id=CVE-2025-68745
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-68745.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2025-68745
- Downstream
- Related
- Published
- 2025-12-24T12:09:41.517Z
- Modified
- 2026-05-15T04:14:12.341615130Z
- Summary
- scsi: qla2xxx: Clear cmds after chip reset
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
scsi: qla2xxx: Clear cmds after chip reset
Commit aefed3e5548f ("scsi: qla2xxx: target: Fix offline port handling and host reset handling") caused two problems:
Commands sent to FW, after chip reset got stuck and never freed as FW is not going to respond to them anymore.
BUGON(cmd->sgmapped) in qltfreecmd(). Commit 26f9ce53817a ("scsi: qla2xxx: Fix missed DMA unmap for aborted commands") attempted to fix this, but introduced another bug under different circumstances when two different CPUs were racing to call qltunmapsg() at the same time: BUGON(!validdmadirection(dir)) in dmaunmapsgattrs().
So revert "scsi: qla2xxx: Fix missed DMA unmap for aborted commands" and partially revert "scsi: qla2xxx: target: Fix offline port handling and host reset handling" at _qla2x00abortallcmds.
- Database specific
{ "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/68xxx/CVE-2025-68745.json", "cna_assigner": "Linux" }- References
-
- https://git.kernel.org/stable/c/5c1fb3fd05da3d55b8cbc42d7d660b313cbdc936
- https://git.kernel.org/stable/c/d46c69a087aa3d1513f7a78f871b80251ea0c1ae
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/68xxx/CVE-2025-68745.json
- https://nvd.nist.gov/vuln/detail/CVE-2025-68745
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git