Linux Kernel SCSI MPI3MR Driver PHY State Corruption Vulnerability

A vulnerability in the Linux kernel's SCSI MPI3MR driver has been addressed, which involved corruption of configuration pages related to SAS I/O units and SAS expanders. This issue arose when multiple PHYs were rapidly disabled and enabled, leading to a corruption of the persistent and current configuration pages. The vulnerability was caused by the driver, through the SAS transport, exposing a sysfs interface that allowed for quick toggling of PHY states in a controller/expander setup. The solution involves using separate memory for each configuration request to prevent such corruption.

Impact

The rapid toggling of PHY states could lead to corruption of the configuration pages, potentially causing issues in the management and operation of SAS I/O units and expanders.