CVE-2025-21957

MEDIUM 5.5

scsi: qla1280: Fix kernel oops when debug level > 2

CVSS Score

5.5

EPSS Score

0.0%

EPSS Percentile

0th

In the Linux kernel, the following vulnerability has been resolved: scsi: qla1280: Fix kernel oops when debug level > 2 A null dereference or oops exception will eventually occur when qla1280.c driver is compiled with DEBUG_QLA1280 enabled and ql_debug_level > 2. I think its clear from the code that the intention here is sg_dma_len(s) not length of sg_next(s) when printing the debug info.

Vendor	linux
Product	linux
Ecosystems	Linux Kernel
Industries	Technology
Published	Apr 1, 2025
Last Updated	May 11, 2026

Stay Ahead of the Next One

Get instant alerts for linux linux

Be the first to know when new medium vulnerabilities affecting linux linux are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Linux / Linux

a0441891373fe2db582075a4639fdfcccea470c1 < afa27b7c17a48e01546ccaad0ab017ad0496a522 a0441891373fe2db582075a4639fdfcccea470c1 < 11a8dac1177a596648a020a7f3708257a2f95fee a0441891373fe2db582075a4639fdfcccea470c1 < c737e2a5fb7f90b96a96121da1b50a9c74ae9b8c a0441891373fe2db582075a4639fdfcccea470c1 < 24602e2664c515a4f2950d7b52c3d5997463418c a0441891373fe2db582075a4639fdfcccea470c1 < ea371d1cdefb0951c7127a33bcd7eb931cf44571 a0441891373fe2db582075a4639fdfcccea470c1 < af71ba921d08c241a817010f96458dc5e5e26762 a0441891373fe2db582075a4639fdfcccea470c1 < 7ac2473e727d67a38266b2b7e55c752402ab588c a0441891373fe2db582075a4639fdfcccea470c1 < 5233e3235dec3065ccc632729675575dbe3c6b8a

Linux / Linux

2.6.24

References

NVD ↗ CVE.org ↗ EPSS Data ↗