Linux Kernel SCSI Target WRITE SAME No Data Buffer Vulnerability Causes Crash

A vulnerability in the Linux kernel's SCSI target handling of the WRITE SAME command has been identified. In newer versions of the SCSI Block Commands (SBC) specifications, a No Data Buffer (NDOB) bit can be set to indicate that no data buffer will be written. When this bit is used with commands like 'sg_write_same --ndob', it can lead to a crash in the target_core_iblock module. The crash occurs because the command handler attempts to access a data pointer that is NULL. This vulnerability affects Oracle Linux versions 6, 7, 8, and 9, as well as Oracle VM version 3.

Impact

Exploitation of this vulnerability leads to a crash of the SCSI target handler, causing a denial of service by interrupting normal operations.

Remediation

Users can refer to the Oracle Linux CVE repository for patch information. Specific errata details can be found for each affected Oracle Linux version.