CVE-2026-23376
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
25/03/2026
Last modified:
24/04/2026
Description
In the Linux kernel, the following vulnerability has been resolved:<br />
<br />
nvmet-fcloop: Check remoteport port_state before calling done callback<br />
<br />
In nvme_fc_handle_ls_rqst_work, the lsrsp->done callback is only set when<br />
remoteport->port_state is FC_OBJSTATE_ONLINE. Otherwise, the<br />
nvme_fc_xmt_ls_rsp&#39;s LLDD call to lport->ops->xmt_ls_rsp is expected to<br />
fail and the nvme-fc transport layer itself will directly call<br />
nvme_fc_xmt_ls_rsp_free instead of relying on LLDD&#39;s done callback to free<br />
the lsrsp resources.<br />
<br />
Update the fcloop_t2h_xmt_ls_rsp routine to check remoteport->port_state.<br />
If online, then lsrsp->done callback will free the lsrsp. Else, return<br />
-ENODEV to signal the nvme-fc transport to handle freeing lsrsp.
Impact
Base Score 3.x
5.50
Severity 3.x
MEDIUM
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 6.17.3 (including) | 6.18 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 6.18.1 (including) | 6.18.17 (excluding) |
| cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* | 6.19 (including) | 6.19.7 (excluding) |
| cpe:2.3:o:linux:linux_kernel:6.18:-:*:*:*:*:*:* | ||
| cpe:2.3:o:linux:linux_kernel:7.0:rc1:*:*:*:*:*:* | ||
| cpe:2.3:o:linux:linux_kernel:7.0:rc2:*:*:*:*:*:* | ||
| cpe:2.3:o:linux:linux_kernel:7.0:rc3:*:*:*:*:*:* | ||
| cpe:2.3:o:linux:linux_kernel:7.0:rc4:*:*:*:*:*:* | ||
| cpe:2.3:o:linux:linux_kernel:7.0:rc5:*:*:*:*:*:* | ||
| cpe:2.3:o:linux:linux_kernel:7.0:rc6:*:*:*:*:*:* | ||
| cpe:2.3:o:linux:linux_kernel:7.0:rc7:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page