Lucene search
K

439 matches found

UbuntuCve
UbuntuCve
added 2026/01/23 4:15 p.m.5 views

CVE-2026-22992

In the Linux kernel, the following vulnerability has been resolved: libceph: return the handler error from monhandleauthdone Currently any error from cephauthhandlereplydone is propagated via finishauth but isn't returned from monhandleauthdone. This results in higher layers learning that despite...

7.5CVSS5.9AI score0.00268EPSS
Exploits0References24
UbuntuCve
UbuntuCve
added 2026/01/23 4:15 p.m.2 views

CVE-2026-22990

In the Linux kernel, the following vulnerability has been resolved: libceph: replace overzealous BUGON in osdmapapplyincremental If the osdmap is maliciously corrupted such that the incremental osdmap epoch is different from what is expected, there is no need to BUG. Instead, just declare the...

7.5CVSS5.9AI score0.00341EPSS
Exploits0References25
OSV
OSV
added 2026/01/23 4:15 p.m.2 views

UBUNTU-CVE-2026-22990

In the Linux kernel, the following vulnerability has been resolved: libceph: replace overzealous BUGON in osdmapapplyincremental If the osdmap is maliciously corrupted such that the incremental osdmap epoch is different from what is expected, there is no need to BUG. Instead, just declare the...

7.5CVSS5.8AI score0.00341EPSS
Exploits0References28
UbuntuCve
UbuntuCve
added 2026/01/23 4:15 p.m.4 views

CVE-2026-22991

In the Linux kernel, the following vulnerability has been resolved: libceph: make freechooseargmap resilient to partial allocation freechooseargmap may dereference a NULL pointer if its caller fails after a partial allocation. For example, in decodechooseargs, if allocation of argmap-args fails,...

7.5CVSS6.1AI score0.00395EPSS
Exploits0References25
OSV
OSV
added 2026/01/23 4:15 p.m.3 views

UBUNTU-CVE-2026-22991

In the Linux kernel, the following vulnerability has been resolved: libceph: make freechooseargmap resilient to partial allocation freechooseargmap may dereference a NULL pointer if its caller fails after a partial allocation. For example, in decodechooseargs, if allocation of argmap-args fails,...

7.5CVSS5.9AI score0.00395EPSS
Exploits0References28
OSV
OSV
added 2026/01/23 3:24 p.m.3 views

CVE-2026-22992 libceph: return the handler error from mon_handle_auth_done()

In the Linux kernel, the following vulnerability has been resolved: libceph: return the handler error from monhandleauthdone Currently any error from cephauthhandlereplydone is propagated via finishauth but isn't returned from monhandleauthdone. This results in higher layers learning that despite...

7.5CVSS5.3AI score0.00268EPSS
Exploits0References9
ATTACKERKB
ATTACKERKB
added 2026/01/23 3:24 p.m.4 views

CVE-2026-22992

In the Linux kernel, the following vulnerability has been resolved: libceph: return the handler error from monhandleauthdone Currently any error from cephauthhandlereplydone is propagated via finishauth but isn't returned from monhandleauthdone. This results in higher layers learning that despite...

5.7AI score0.00268EPSS
Exploits0References7Affected Software1
CVE
CVE
added 2026/01/23 3:24 p.m.55 views

CVE-2026-22992

Mode C: The CVE-2026-22992 issue affects the Linux kernel’s libceph stack. Root cause: mon_handle_auth_done() no longer propagates errors from ceph_auth_handle_reply_done(), so a failure during authentication could be misinterpreted by higher layers while msgr2 proceeds with session setup. Potent...

7.5CVSS5.2AI score0.00268EPSS
Exploits0References6Affected Software1
Debian CVE
Debian CVE
added 2026/01/23 3:24 p.m.2 views

CVE-2026-22992

In the Linux kernel, the following vulnerability has been resolved: libceph: return the handler error from monhandleauthdone Currently any error from cephauthhandlereplydone is propagated via finishauth but isn't returned from monhandleauthdone. This results in higher layers learning that despite...

7.5CVSS5.3AI score0.00268EPSS
Exploits0
Debian CVE
Debian CVE
added 2026/01/23 3:24 p.m.4 views

CVE-2026-22991

In the Linux kernel, the following vulnerability has been resolved: libceph: make freechooseargmap resilient to partial allocation freechooseargmap may dereference a NULL pointer if its caller fails after a partial allocation. For example, in decodechooseargs, if allocation of argmap-args fails,...

7.5CVSS5.5AI score0.00395EPSS
Exploits0
CVE
CVE
added 2026/01/23 3:24 p.m.55 views

CVE-2026-22991

CVE-2026-22991 is a Linux kernel vulnerability in the libceph code path. A NULL pointer dereference could occur in free_choose_arg_map() when a caller triggers a partial allocation (for example, decode_choose_args() may set arg_map->size before memory allocation and then fail). The fix adds nu...

7.5CVSS5.4AI score0.00395EPSS
Exploits0References7Affected Software1
Cvelist
Cvelist
added 2026/01/23 3:24 p.m.32 views

CVE-2026-22991 libceph: make free_choose_arg_map() resilient to partial allocation

In the Linux kernel, the following vulnerability has been resolved: libceph: make freechooseargmap resilient to partial allocation freechooseargmap may dereference a NULL pointer if its caller fails after a partial allocation. For example, in decodechooseargs, if allocation of argmap-args fails,...

7.5CVSS0.00395EPSS
Exploits0References7
OSV
OSV
added 2026/01/23 3:24 p.m.7 views

CVE-2026-22991 libceph: make free_choose_arg_map() resilient to partial allocation

In the Linux kernel, the following vulnerability has been resolved: libceph: make freechooseargmap resilient to partial allocation freechooseargmap may dereference a NULL pointer if its caller fails after a partial allocation. For example, in decodechooseargs, if allocation of argmap-args fails,...

7.5CVSS5.4AI score0.00395EPSS
Exploits0References10
ATTACKERKB
ATTACKERKB
added 2026/01/23 3:24 p.m.5 views

CVE-2026-22990

In the Linux kernel, the following vulnerability has been resolved: libceph: replace overzealous BUGON in osdmapapplyincremental If the osdmap is maliciously corrupted such that the incremental osdmap epoch is different from what is expected, there is no need to BUG. Instead, just declare the...

5.7AI score0.00341EPSS
Exploits0References8Affected Software1
CVE
CVE
added 2026/01/23 3:24 p.m.64 views

CVE-2026-22990

CVE-2026-22990 affects the Linux kernel libceph component, where an overzealous BUG_ON in osdmap_apply_incremental() could misreact to a maliciously corrupted incremental osdmap epoch. The mitigation is to treat such an incongruent incremental osdmap as invalid rather than triggering a BUG. Conne...

7.5CVSS5.2AI score0.00341EPSS
Exploits0References7Affected Software1
OSV
OSV
added 2026/01/23 3:24 p.m.3 views

CVE-2026-22990 libceph: replace overzealous BUG_ON in osdmap_apply_incremental()

In the Linux kernel, the following vulnerability has been resolved: libceph: replace overzealous BUGON in osdmapapplyincremental If the osdmap is maliciously corrupted such that the incremental osdmap epoch is different from what is expected, there is no need to BUG. Instead, just declare the...

7.5CVSS5.7AI score0.00341EPSS
Exploits0References10
Cvelist
Cvelist
added 2026/01/23 3:24 p.m.27 views

CVE-2026-22990 libceph: replace overzealous BUG_ON in osdmap_apply_incremental()

In the Linux kernel, the following vulnerability has been resolved: libceph: replace overzealous BUGON in osdmapapplyincremental If the osdmap is maliciously corrupted such that the incremental osdmap epoch is different from what is expected, there is no need to BUG. Instead, just declare the...

7.5CVSS0.00341EPSS
Exploits0References7
Debian CVE
Debian CVE
added 2026/01/23 3:24 p.m.3 views

CVE-2026-22990

In the Linux kernel, the following vulnerability has been resolved: libceph: replace overzealous BUGON in osdmapapplyincremental If the osdmap is maliciously corrupted such that the incremental osdmap epoch is different from what is expected, there is no need to BUG. Instead, just declare the...

7.5CVSS5.3AI score0.00341EPSS
Exploits0
Cvelist
Cvelist
added 2026/01/23 3:24 p.m.28 views

CVE-2026-22984 libceph: prevent potential out-of-bounds reads in handle_auth_done()

In the Linux kernel, the following vulnerability has been resolved: libceph: prevent potential out-of-bounds reads in handleauthdone Perform an explicit bounds check on payloadlen to avoid a possible out-of-bounds access in the callout. idryomov: changelog...

9.8CVSS0.00351EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2026/01/23 3:24 p.m.4 views

CVE-2026-22984

In the Linux kernel, the following vulnerability has been resolved: libceph: prevent potential out-of-bounds reads in handleauthdone Perform an explicit bounds check on payloadlen to avoid a possible out-of-bounds access in the callout. idryomov: changelog...

5.8AI score0.00351EPSS
Exploits0References7Affected Software1
Rows per page
Query Builder