CVE-2026-22984

HIGH EPSS 27.0%
Published Jan 23, 20265mo ago · Modified Jun 17, 20261w ago
7.1 CVSS 3.1
High
Find Similar
Published Jan 23, 2026 5mo ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: libceph: prevent potential out-of-bounds reads in handle_auth_done() Perform an explicit bounds check on payload_len to avoid a possible out-of-bounds access in the callout. [ idryomov: changelog ]

CVSS Details

Base Score
7.1
Exploitability
1.8
Impact
5.2
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality High
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
27.0% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-125 Out-of-bounds Read Memory Safety

Affected Products 9

VendorProductVersionRange
linuxlinux_kernel*≥5.11  –  <5.15.198
linuxlinux_kernel*≥5.16  –  <6.1.161
linuxlinux_kernel*≥6.2  –  <6.6.121
linuxlinux_kernel*≥6.7  –  <6.12.66
linuxlinux_kernel*≥6.13  –  <6.18.6
linuxlinux_kernel6.19any
linuxlinux_kernel6.19any
linuxlinux_kernel6.19any
linuxlinux_kernel6.19any

References 6

  • git.kernel.org https://git.kernel.org/stable/c/194cfe2af4d2a1de599d39dad636b47c2f6c2c96
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/2802ef3380fa8c4a08cda51ec1f085b1a712e9e2
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/2d653bb63d598ae4b096dd678744bdcc34ee89e8
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/79fe3511db416d2f2edcfd93569807cb02736e5e
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/818156caffbf55cb4d368f9c3cac64e458fb49c9
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ef208ea331ef688729f64089b895ed1b49e842e3
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/194cfe2af4d2a1de599d39dad636b47c2f6c2c96
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/2802ef3380fa8c4a08cda51ec1f085b1a712e9e2
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/2d653bb63d598ae4b096dd678744bdcc34ee89e8
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/79fe3511db416d2f2edcfd93569807cb02736e5e
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/818156caffbf55cb4d368f9c3cac64e458fb49c9
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/ef208ea331ef688729f64089b895ed1b49e842e3
    Patch