CVE-2026-22984 PUBLISHED

libceph: prevent potential out-of-bounds reads in handle_auth_done()

Assigner: Linux
Reserved: 13.01.2026 Published: 23.01.2026 Updated: 23.01.2026

In the Linux kernel, the following vulnerability has been resolved:

libceph: prevent potential out-of-bounds reads in handle_auth_done()

Perform an explicit bounds check on payload_len to avoid a possible out-of-bounds access in the callout.

[ idryomov: changelog ]

Product Status

Vendor Linux
Product Linux
Versions Default: unaffected
  • affected from 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 to 194cfe2af4d2a1de599d39dad636b47c2f6c2c96 (excl.)
  • affected from 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 to 79fe3511db416d2f2edcfd93569807cb02736e5e (excl.)
  • affected from 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 to ef208ea331ef688729f64089b895ed1b49e842e3 (excl.)
  • affected from 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 to 2802ef3380fa8c4a08cda51ec1f085b1a712e9e2 (excl.)
  • affected from 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 to 2d653bb63d598ae4b096dd678744bdcc34ee89e8 (excl.)
  • affected from 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 to 818156caffbf55cb4d368f9c3cac64e458fb49c9 (excl.)
Vendor Linux
Product Linux
Versions Default: affected
  • unaffected from 5.15.198 to 5.15.* (incl.)
  • unaffected from 6.1.161 to 6.1.* (incl.)
  • unaffected from 6.6.121 to 6.6.* (incl.)
  • unaffected from 6.12.66 to 6.12.* (incl.)
  • unaffected from 6.18.6 to 6.18.* (incl.)
  • unaffected from 6.19-rc5 to * (incl.)

References