You are using an out of date browser. It may not display this or other websites correctly. You should upgrade or use an alternative browser.
storage security
About this tag
The storage security tag on WindowsForum.com covers discussions about vulnerabilities and hardening measures in storage subsystems, particularly those involving Linux kernel drivers for Fibre Channel and SCSI paths. Recent content includes analysis of CVE-2024-42287, a race condition in the qla2xxx driver that could cause kernel crashes during NPIV or firmware resets, along with patch guidance for enterprise storage servers and SAN-connected hosts. Topics focus on secure DMA, driver-level locking, and distribution-specific kernel updates to mitigate storage-related security flaws.
CISA on June 30, 2026, published an industrial-control-system advisory warning that multiple vulnerabilities in StoneFly Storage Concentrator and Storage Concentrator Virtual Machine before fixed 8.0.4.x releases could enable unauthorized access, root-level command execution, sensitive-data...
A subtle race in the Linux SCSI qla2xxx driver that could crash hosts during NPIV or firmware reset sequences has been publicly documented as CVE-2024-42287; upstream maintainers have issued a targeted fix (complete command handling while holding the driver lock) and major distributions have...