A flaw was found in the Linux kernel's NVMe driver. This issue may allow an unauthenticated malicious actor to send a set of crafted TCP packages when using NVMe over TCP, leading the NVMe driver to a NULL pointer dereference in the NVMe driver and causing kernel panic and a denial of service.
| Version | Score | Severity | Vector String |
|---|---|---|---|
| 3.1 | 6.5 | Medium | CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |
| Product | Vendor | Version |
|---|---|---|
| Red Hat Enterprise Linux 7 | Red Hat | QCA6335 |
| Red Hat Enterprise Linux 6 | Red Hat | QCA6320 |
| Red Hat Enterprise Linux 8.8 Extended Update Support | Red Hat | < 5.4 |
| Red Hat Enterprise Linux 9 | Red Hat | QCA6420 |
| Red Hat Enterprise Linux 9.2 Extended Update Support | Red Hat | 4.1.18 |
| Red Hat Enterprise Linux 7 | Red Hat | QCA6391 |
| RHOL-5.8-RHEL-9 | Red Hat | < 26.1 |
| RHOL-5.8-RHEL-9 | Red Hat | <= 23.006.20360 |
| RHOL-5.8-RHEL-9 | Red Hat | AQT1000 |
| RHOL-5.8-RHEL-9 | Red Hat | FastConnect 6700 |
| RHOL-5.8-RHEL-9 | Red Hat | FastConnect 6900 |
| RHOL-5.8-RHEL-9 | Red Hat | QAM8255P |
| RHOL-5.8-RHEL-9 | Red Hat | QAM8650P |
| RHOL-5.8-RHEL-9 | Red Hat | QAMSRV1H |
| RHOL-5.8-RHEL-9 | Red Hat | QAMSRV1M |
| RHOL-5.8-RHEL-9 | Red Hat | QCA6174A |
| RHOL-5.8-RHEL-9 | Red Hat | QCA6310 |