Critical Vulnerability Information Vulnerability Type: WRITE_SAME No Data Buffer crash Affected Versions: New SBC specifications introduced the NDOB bit, indicating no data buffer is written. Issue Description: When using the command, if the NDOB bit is set, the system crashes when accessing , as it is NULL. Mitigation Measures: - Add a check for the NDOB bit in the generic WRITE SAME code, as it is not supported. - Add checks for zero SG elements in each handler, to prevent initiators from sending a regular WRITE SAME without a data buffer. Related Files and Changes Affected Files: - - - Change Statistics: - 3 files modified, 13 insertions, 0 deletions. Code Snippet Example ```c diff --git a/drivers/target/target_core_file.c b/drivers/target/target_core_file.c @@ -448,6 +448,9 @@ fd_execute_write_same(struct se_cmd *cmd) return TCM_LOGICAL_UNIT_COMMUNICATION_FAILURE; } if (!cmd->t_data_nents) return TCM_INVALID_CDB_FIELD; if (cmd->t_data_nents > 1 cmd->t_data_sg[0].length != cmd->se_dev->dev_attrib.block_size) { pr_err("WRITE_SAME: Illegal SGL t_data_nents: %u length: %u"