CVE-2022-50827

In the Linux kernel, the following vulnerability has been resolved:<br /> <br /> scsi: lpfc: Fix memory leak in lpfc_create_port()<br /> <br /> Commit 5e633302ace1 ("scsi: lpfc: vmid: Add support for VMID in mailbox<br /> command") introduced allocations for the VMID resources in<br /> lpfc_create_port() after the call to scsi_host_alloc(). Upon failure on the<br /> VMID allocations, the new code would branch to the &amp;#39;out&amp;#39; label, which<br /> returns NULL without unwinding anything, thus skipping the call to<br /> scsi_host_put().<br /> <br /> Fix the problem by creating a separate label &amp;#39;out_free_vmid&amp;#39; to unwind the<br /> VMID resources and make the &amp;#39;out_put_shost&amp;#39; label call only<br /> scsi_host_put(), as was done before the introduction of allocations for<br /> VMID.