-

CVE-2025-68284

EPSS 0.06%
Veröffentlicht 16.12.2025 15:06:06
Zuletzt bearbeitet 18.12.2025 15:08:06
Quelle 416baaa9-dc9f-4396-8d5f-8c081f
CVE-Watchlists
Login
Unerledigt
Login

In the Linux kernel, the following vulnerability has been resolved:

libceph: prevent potential out-of-bounds writes in handle_auth_session_key()

The len field originates from untrusted network packets. Boundary
checks have been added to prevent potential out-of-bounds writes when
decrypting the connection secret or processing service tickets.

[ idryomov: changelog ]

Betroffene Produkte Warnungen 0 Metriken 1 CWE 0 Referenzen 9

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerLinux

≫

Produkt Linux

Default Statusunaffected

Version < f22c55a20a2d9ffbbac57408d5d488cef8201e9d

Version 285ea34fc876aa0a2c5e65d310c4a41269e2e5f2

Status affected

Version < 8dfcc56af28cffb8f25fb9be37b3acc61f2a3d09

Version 285ea34fc876aa0a2c5e65d310c4a41269e2e5f2

Status affected

Version < ccbccfba25e9aa395daaea156b5e7790910054c4

Version 285ea34fc876aa0a2c5e65d310c4a41269e2e5f2

Status affected

Version < 5ef575834ca99f719d7573cdece9df2fe2b72424

Version 285ea34fc876aa0a2c5e65d310c4a41269e2e5f2

Status affected

Version < 6920ff09bf911bc919cd7a6b7176fbdd1a6e6850

Version 285ea34fc876aa0a2c5e65d310c4a41269e2e5f2

Status affected

Version < 7fce830ecd0a0256590ee37eb65a39cbad3d64fc

Version 285ea34fc876aa0a2c5e65d310c4a41269e2e5f2

Status affected

HerstellerLinux

≫

Produkt Linux

Default Statusaffected

Version 5.11

Status affected

Version < 5.11

Version 0

Status unaffected

Version <= 5.15.*

Version 5.15.197

Status unaffected

Version <= 6.1.*

Version 6.1.159

Status unaffected

Version <= 6.6.*

Version 6.6.119

Status unaffected

Version <= 6.12.*

Version 6.12.61

Status unaffected

Version <= 6.17.*

Version 6.17.11

Status unaffected

Version <= *

Version 6.18

Status unaffected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.06%	0.191

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String

Es wurden noch keine Informationen zu CWE veröffentlicht.

https://git.kernel.org/stable/c/f22c55a20a2d9ffbbac57408d5d488cef8201e9d

https://git.kernel.org/stable/c/8dfcc56af28cffb8f25fb9be37b3acc61f2a3d09

https://git.kernel.org/stable/c/ccbccfba25e9aa395daaea156b5e7790910054c4

https://git.kernel.org/stable/c/5ef575834ca99f719d7573cdece9df2fe2b72424

https://git.kernel.org/stable/c/6920ff09bf911bc919cd7a6b7176fbdd1a6e6850

https://git.kernel.org/stable/c/7fce830ecd0a0256590ee37eb65a39cbad3d64fc

https://nvd.nist.gov/vuln/detail/CVE-2025-68284

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-68284

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-68284

EUVD