CVE-2023-54154

*** Pendiente de traducción *** In the Linux kernel, the following vulnerability has been resolved:<br /> <br /> scsi: target: core: Fix target_cmd_counter leak<br /> <br /> The target_cmd_counter struct allocated via target_alloc_cmd_counter() is<br /> never freed, resulting in leaks across various transport types, e.g.:<br /> <br /> unreferenced object 0xffff88801f920120 (size 96):<br /> comm "sh", pid 102, jiffies 4294892535 (age 713.412s)<br /> hex dump (first 32 bytes):<br /> 07 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................<br /> 00 00 00 00 00 00 00 00 38 01 92 1f 80 88 ff ff ........8.......<br /> backtrace:<br /> [] kmalloc_trace+0x11/0x20<br /> [] target_alloc_cmd_counter+0x17/0x90 [target_core_mod]<br /> [] target_setup_session+0x2d/0x140 [target_core_mod]<br /> [] tcm_loop_tpg_nexus_store+0x19b/0x350 [tcm_loop]<br /> [] configfs_write_iter+0xb1/0x120<br /> [] vfs_write+0x2e4/0x3c0<br /> [] ksys_write+0x80/0xb0<br /> [] do_syscall_64+0x42/0x90<br /> [] entry_SYSCALL_64_after_hwframe+0x6e/0xd8<br /> <br /> Free the structure alongside the corresponding iscsit_conn / se_sess<br /> parent.