An issue was discovered in the Linux kernel before 5.0.7. A NULL pointer dereference can occur when megasas_create_frame_pool() fails in megasas_alloc_cmds() in drivers/scsi/megaraid/megaraid_sas_base.c. This causes a Denial of Service, related to a use-after-free.
4.4.0-150.1764.4.0-1084.944.15.0-1047.49~16.04.14.15.0-1056.614.15.0-1041.434.15.0-60.67~16.04.14.4.0-1047.534.15.0-1022.25~16.04.14.4.0-1110.1184.4.0-1114.119Exploitability
AV:NAC:LPR:NUI:NScope
S:UImpact
C:NI:NA:HCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H