CVE-2024-57804

Published: Jan 11, 2025

Modified: May 11, 2026

PUBLISHED

Description

In the Linux kernel, the following vulnerability has been resolved: scsi: mpi3mr: Fix corrupt config pages PHY state is switched in sysfs The driver, through the SAS transport, exposes a sysfs interface to enable/disable PHYs in a controller/expander setup. When multiple PHYs are disabled and enabled in rapid succession, the persistent and current config pages related to SAS IO unit/SAS Expander pages could get corrupted. Use separate memory for each config request.

Vendor	Product	Versions
Linux	Linux	affected `32d457d5a2af9bf5ddbe28297eabf1fc93451665 - < 869fdc6f0606060301aef648231e186c7c542f5a` affected `32d457d5a2af9bf5ddbe28297eabf1fc93451665 - < 711201a8b8334a397440ac0b859df0054e174bc9`
Linux	Linux	affected `6.1` unaffected `0 - < 6.1` unaffected `6.12.8 - <= 6.12.` unaffected `6.13 - <= `

References

https://git.kernel.org/stable/c/869fdc6f0606060301aef648231e186c7c542f5a

https://git.kernel.org/stable/c/711201a8b8334a397440ac0b859df0054e174bc9

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2024-57804

Description

Affected Products

References