CVE-2026-46024 libceph: Prevent potential null-ptr-deref in ceph_handle_auth_reply()

🗓️ 27 May 2026 12:56:29Reported by LinuxType

Fix potential null pointer dereference in ceph_handle_auth_reply when CEPH_AUTH_REPLY has zero protocol.

Reporter	Title	Published	Views	Family All 35
ATTACKERKB	CVE-2026-46024	27 May 202612:56	–	attackerkb
CNNVD	Linux kernel 安全漏洞	27 May 202600:00	–	cnnvd
CVE	CVE-2026-46024	27 May 202612:56	–	cve
Debian CVE	CVE-2026-46024	27 May 202612:56	–	debiancve
EUVD	EUVD-2026-32405	27 May 202612:56	–	euvd
Microsoft CVE	libceph: Prevent potential null-ptr-deref in ceph_handle_auth_reply()	28 May 202608:11	–	mscve
NVD	CVE-2026-46024	27 May 202614:17	–	nvd
OPENSUSE Linux	kernel-devel-7.0.11-1.1 on GA media (moderate)	8 Jun 202600:00	–	opensuse
OSV	BELL-CVE-2026-46024	28 May 202606:10	–	osv
OSV	DEBIAN-CVE-2026-46024	27 May 202614:17	–	osv

[
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "unaffected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "net/ceph/auth.c"
    ],
    "versions": [
      {
        "version": "4e7a5dcd1bbab6560fbc8ada29a840e7a20ed7bc",
        "lessThan": "9ded62c302c0342efdb5eda3bf6e75720caad0df",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "4e7a5dcd1bbab6560fbc8ada29a840e7a20ed7bc",
        "lessThan": "f101271fcf55d7eacfefd610b51ec65f46ba8118",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "4e7a5dcd1bbab6560fbc8ada29a840e7a20ed7bc",
        "lessThan": "4b2738b93edad661178340239de657d876b73d3d",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "4e7a5dcd1bbab6560fbc8ada29a840e7a20ed7bc",
        "lessThan": "927e4bd5692f2a4901808822981fb2c8d4456548",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "4e7a5dcd1bbab6560fbc8ada29a840e7a20ed7bc",
        "lessThan": "016bc663657366d386993f63eb31072eb45a2b77",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "4e7a5dcd1bbab6560fbc8ada29a840e7a20ed7bc",
        "lessThan": "8f2be7285941a33a9f72579a23b96392f83c758e",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "4e7a5dcd1bbab6560fbc8ada29a840e7a20ed7bc",
        "lessThan": "5199c125d25aeae8615c4fc31652cc0fe624338e",
        "status": "affected",
        "versionType": "git"
      }
    ]
  },
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "affected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "net/ceph/auth.c"
    ],
    "versions": [
      {
        "version": "2.6.34",
        "status": "affected"
      },
      {
        "version": "0",
        "lessThan": "2.6.34",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "5.15.209",
        "lessThanOrEqual": "5.15.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.1.175",
        "lessThanOrEqual": "6.1.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.6.140",
        "lessThanOrEqual": "6.6.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.12.86",
        "lessThanOrEqual": "6.12.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.18.27",
        "lessThanOrEqual": "6.18.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "7.0.4",
        "lessThanOrEqual": "7.0.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "7.1",
        "lessThanOrEqual": "*",
        "status": "unaffected",
        "versionType": "original_commit_for_fix"
      }
    ]
  }
]

Source	Link
git	www.git.kernel.org/stable/c/927e4bd5692f2a4901808822981fb2c8d4456548
git	www.git.kernel.org/stable/c/5199c125d25aeae8615c4fc31652cc0fe624338e
git	www.git.kernel.org/stable/c/4b2738b93edad661178340239de657d876b73d3d
git	www.git.kernel.org/stable/c/9ded62c302c0342efdb5eda3bf6e75720caad0df
git	www.git.kernel.org/stable/c/f101271fcf55d7eacfefd610b51ec65f46ba8118
git	www.git.kernel.org/stable/c/8f2be7285941a33a9f72579a23b96392f83c758e
git	www.git.kernel.org/stable/c/016bc663657366d386993f63eb31072eb45a2b77

14 Jun 2026 17:48Current

CVSS 3.17.5

EPSS0.0007