CVE-2023-53696

In the Linux kernel, the following vulnerability has been resolved:<br /> <br /> scsi: qla2xxx: Fix memory leak in qla2x00_probe_one()<br /> <br /> There is a memory leak reported by kmemleak:<br /> <br /> unreferenced object 0xffffc900003f0000 (size 12288):<br /> comm "modprobe", pid 19117, jiffies 4299751452 (age 42490.264s)<br /> hex dump (first 32 bytes):<br /> 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................<br /> 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................<br /> backtrace:<br /> [] __vmalloc_node_range+0xe56/0x1110<br /> [] __vmalloc_node+0xbd/0x150<br /> [] vmalloc+0x25/0x30<br /> [] qla2x00_create_host+0x7a0/0xe30 [qla2xxx]<br /> [] qla2x00_probe_one+0x2eb8/0xd160 [qla2xxx]<br /> [] local_pci_probe+0xeb/0x1a0<br /> <br /> The root cause is traced to an error-handling path in qla2x00_probe_one()<br /> when the adapter "base_vha" initialize failed. The fab_scan_rp "scan.l" is<br /> used to record the port information and it is allocated in<br /> qla2x00_create_host(). However, it is not released in the error handling<br /> path "probe_failed".<br /> <br /> Fix this by freeing the memory of "scan.l" when an error occurs in the<br /> adapter initialization process.