CVE ID : CVE-2024-50062

Published : Oct. 21, 2024, 8:15 p.m. | 1 hour ago

Description : In the Linux kernel, the following vulnerability has been resolved:

RDMA/rtrs-srv: Avoid null pointer deref during path establishment

For RTRS path establishment, RTRS client initiates and completes con_num
of connections. After establishing all its connections, the information
is exchanged between the client and server through the info_req message.
During this exchange, it is essential that all connections have been
established, and the state of the RTRS srv path is CONNECTED.

So add these sanity checks, to make sure we detect and abort process in
error scenarios to avoid null pointer deref.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…