2 matches found
CVE-2026-52958
CVE-2026-52958 affects the Linux kernel libceph subsystem. The vulnerability arises in osdmap_decode() when decoding osd_state and osd_weight for each osd; the ceph_decode_need() check did not account for map->max_osd*sizeof(*map->osd_weight), enabling a potential out-of-bounds memory acces...
CVE-2026-52958 libceph: Fix potential out-of-bounds access in osdmap_decode()
In the Linux kernel, the following vulnerability has been resolved: libceph: Fix potential out-of-bounds access in osdmapdecode When decoding osdstate and osdweight from an incoming osdmap in osdmapdecode, both are decoded for each osd, i.e., map-maxosd times. The cephdecodeneed check only accoun...