An issue was discovered in the Linux kernel before 4.20. There is a race condition in smp_task_timedout() and smp_task_done() in drivers/scsi/libsas/sas_expander.c, leading to a use-after-free.
AI analysis not yet available
Plain-English explanation, risk summary, and remediation steps will appear here once AI analysis is complete.
No Fix Known
No patch has been released yet. Apply workarounds or mitigations where available.
| Vendor | Product | Versions | Fixed In |
|---|---|---|---|
| linux | linux_kernel | 3.16.72 | - |
| linux | linux_kernel | 3.17 - 3.18.140 | - |
| linux | linux_kernel | 3.19 - 4.4.180 |
Published
CVE disclosed publicly
Last Modified
Most recent update
Indexed to CVEInsight
Added to this platform
AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
22
Affected Products
28
References
linux / linux_kernel
| - |
| linux | linux_kernel | 4.5 - 4.9.175 | - |
| linux | linux_kernel | 4.10 - 4.14.118 | - |
| linux | linux_kernel | 4.15 - 4.19.42 | - |
| canonical | ubuntu_linux | - | - |
| debian | debian_linux | - | - |
| debian | debian_linux | - | - |
| debian | debian_linux | - | - |
| f5 | traffix_signaling_delivery_controller | - | - |
| f5 | traffix_signaling_delivery_controller | - | - |
| netapp | active_iq_unified_manager | 9.5 | - |
| netapp | snapprotect | - | - |
| netapp | solidfire_\&_hci_management_node | - | - |
| netapp | solidfire_\&_hci_storage_node | - | - |
| netapp | storage_replication_adapter_for_clustered_data_ontap | - | - |
| netapp | vasa_provider_for_clustered_data_ontap | 7.2 | - |
| netapp | virtual_storage_console | 7.2 | - |
| netapp | hci_compute_node | - | - |
| opensuse | leap | - | - |
| opensuse | leap | - | - |
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Exploitability
Impact