Lucene search
K

14 matches found

AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.5 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerabilities have been resolved: ceph: Added initializers for the cephpathinfo structure when they were missing. The cephmdscbuildpath function must be called with a cephpathinfo parameter initialized to zero. Otherwise, the cephmdscfreepathinfo function migh...

7.8CVSS5.9AI score0.00129EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2026/05/12 3:30 a.m.7 views

SUSE CVE-2026-43408

In the Linux kernel, the following vulnerability has been resolved: ceph: add a bunch of missing cephpathinfo initializers cephmdscbuildpath must be called with a zero-initialized cephpathinfo parameter, or else the following cephmdscfreepathinfo may crash. Example crash on Linux 6.18.12:...

7.8CVSS5.7AI score0.00129EPSS
Exploits0References3
NVD
NVD
added 2026/05/08 3:16 p.m.8 views

CVE-2026-43408

In the Linux kernel, the following vulnerability has been resolved: ceph: add a bunch of missing cephpathinfo initializers cephmdscbuildpath must be called with a zero-initialized cephpathinfo parameter, or else the following cephmdscfreepathinfo may crash. Example crash on Linux 6.18.12:...

7.8CVSS0.00129EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2026/05/08 3:16 p.m.12 views

CVE-2026-43408

In the Linux kernel, the following vulnerability has been resolved: ceph: add a bunch of missing cephpathinfo initializers cephmdscbuildpath must be called with a zero-initialized cephpathinfo parameter, or else the following cephmdscfreepathinfo may crash. Example crash on Linux 6.18.12:...

7.8CVSS5.7AI score0.00129EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2026/05/08 2:21 p.m.7 views

CVE-2026-43408

In the Linux kernel, the following vulnerability has been resolved: ceph: add a bunch of missing cephpathinfo initializers cephmdscbuildpath must be called with a zero-initialized cephpathinfo parameter, or else the following cephmdscfreepathinfo may crash. Example crash on Linux 6.18.12:...

7.8CVSS5.7AI score0.00129EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2026/05/08 2:21 p.m.2 views

CVE-2026-43408 ceph: add a bunch of missing ceph_path_info initializers

In the Linux kernel, the following vulnerability has been resolved: ceph: add a bunch of missing cephpathinfo initializers cephmdscbuildpath must be called with a zero-initialized cephpathinfo parameter, or else the following cephmdscfreepathinfo may crash. Example crash on Linux 6.18.12:...

7.8CVSS6.5AI score0.00129EPSS
Exploits0References7
CVE
CVE
added 2026/05/08 2:21 p.m.30 views

CVE-2026-43408

CVE-2026-43408 concerns the Linux kernel Ceph path handling: a missing zero-initialization of ceph_path_info before ceph_mdsc_build_path() calls can lead to crashes when ceph_mdsc_free_path_info() is invoked on error paths. Multiple code paths lacked proper initializers; the recommended fix is to...

7.8CVSS5.7AI score0.00129EPSS
Exploits0References4Affected Software1
Debian CVE
Debian CVE
added 2026/05/08 2:21 p.m.7 views

CVE-2026-43408

In the Linux kernel, the following vulnerability has been resolved: ceph: add a bunch of missing cephpathinfo initializers cephmdscbuildpath must be called with a zero-initialized cephpathinfo parameter, or else the following cephmdscfreepathinfo may crash. Example crash on Linux 6.18.12:...

7.8CVSS5.6AI score0.00129EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/05/08 12:0 a.m.13 views

PT-2026-39069

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Ceph component of the Linux kernel where the ceph mdsc build path function is called without a zero-initialized ceph path info parameter. Because ceph mdsc build pat...

7.8CVSS7.2AI score0.00149EPSS
Exploits0References50
OSV
OSV
added 2026/01/23 12:23 p.m.10 views

OESA-2026-1229 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel, the following vulnerability has been resolved: ceph: give up on paths longer than PATHMAX If the full path to be built by cephmdscbuildpath happens to be longer than PATHMAX, then this function will enter an...

7.8CVSS5.9AI score0.02113EPSS
Exploits2References14
OSV
OSV
added 2026/01/23 12:23 p.m.12 views

OESA-2026-1228 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel, the following vulnerability has been resolved: net: fec: remove .ndopollcontroller to avoid deadlocks There is a deadlock issue found in sungem driver, please refer to the commit ac0a230f719b "eth: sungem:...

7.8CVSS6.6AI score0.02113EPSS
Exploits2References15
AstraLinux
AstraLinux
added 2025/06/16 11:28 a.m.3 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: ceph: Stopping functions that attempt paths longer than PATHMAX If the full path to be built by cephmdscbuildpath is longer than PATHMAX, this function will enter an endless loop, effectively blocking the entire task. Most of the...

5.5CVSS6.2AI score0.00217EPSS
Exploits0References3
Amazon
Amazon
added 2025/03/06 12:0 a.m.8 views

Important: kernel

Issue Overview: Integer Overflow or Wraparound vulnerability in Linux kernel on x86 and ARM md, raid, raid5 modules allows Forced Integer Overflow. CVE-2024-23307 In the Linux kernel, the following vulnerability has been resolved: gpiolib: cdev: Fix use after free in lineinfochangednotify...

7.8CVSS6.6AI score0.0059EPSS
Exploits1
OSV
OSV
added 2025/01/11 1:15 p.m.1 views

DEBIAN-CVE-2024-53685

In the Linux kernel, the following vulnerability has been resolved: ceph: give up on paths longer than PATHMAX If the full path to be built by cephmdscbuildpath happens to be longer than PATHMAX, then this function will enter an endless retry loop, effectively blocking the whole task. Most of the...

5.5CVSS5.6AI score0.00217EPSS
Exploits0References1
Rows per page
Query Builder