Linux Kernel Vulnerability in SCSI qla2xxx - Pointer Dereference Issue
CVE-2023-53603

Currently unrated

Key Information:

Vendor

Linux
Status
Linux
Vendor
CVE Published:
4 October 2025

What is CVE-2023-53603?

A vulnerability within the SCSI qla2xxx module of the Linux kernel allows for a potential NULL pointer dereference. When the sa_ctl variable is NULL, the code incorrectly proceeds to allocate a fcport pointer. If the routine does not exit properly when sa_ctl is NULL, it may lead to dereferencing an uninitalized fcport pointer, posing stability and security risks in certain conditions. A resolution has been implemented to ensure that the routine exits safely whenever sa_ctl is found to be NULL, preventing this issue.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Linux 7b2fbfa4b2cd3a24c1760b85d842e928070d4744 < 4406fe8a96a946c7ea5724ee59625755a1d9c59d

Linux e0fb8ce2bb9e52c846e54ad2c58b5b7beb13eb09 < 477bc74ad1add644b606bff6ba1284943c42818a

Linux e0fb8ce2bb9e52c846e54ad2c58b5b7beb13eb09 < 7bbeff613ec0560fb2f6f8b405288f3f043adf64

References

https://git.kernel.org/stable/c/4406fe8a96a946c7ea5724ee5...
https://git.kernel.org/stable/c/477bc74ad1add644b606bff6b...
https://git.kernel.org/stable/c/7bbeff613ec0560fb2f6f8b40...

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.