-

CVE-2026-52962

ceph: fix a buffer leak in __ceph_setxattr()

In the Linux kernel, the following vulnerability has been resolved:

ceph: fix a buffer leak in __ceph_setxattr()

The old_blob in __ceph_setxattr() can store
ci->i_xattrs.prealloc_blob value during the retry.
However, it is never called the ceph_buffer_put()
for the old_blob object. This patch fixes the issue of
the buffer leak.
Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).
HerstellerLinux
Produkt Linux
Default Statusunaffected
Version 86968ef21596515958d5f0a40233d02be78ecec0
Version < 521e5aba857fd267624892c8dd6295f22ce0267e
Status affected
Version 86968ef21596515958d5f0a40233d02be78ecec0
Version < d0cb994605c84a159c1d00d72cdc8583c321ef95
Status affected
Version 86968ef21596515958d5f0a40233d02be78ecec0
Version < ecf94823c5c6a20790bb76ed2816822b0beb0c22
Status affected
Version 86968ef21596515958d5f0a40233d02be78ecec0
Version < 4bfdcefdaa6092a06cacd59389c7756b36e6de8c
Status affected
Version 86968ef21596515958d5f0a40233d02be78ecec0
Version < 7d3e8d2d648d5f0df29b4710246680f47695fe94
Status affected
Version 86968ef21596515958d5f0a40233d02be78ecec0
Version < 3fa13ceefbc5f36131110342743994cb3de80637
Status affected
Version 86968ef21596515958d5f0a40233d02be78ecec0
Version < bc7abce4460e490dcb579eec770f175b150b685f
Status affected
Version 86968ef21596515958d5f0a40233d02be78ecec0
Version < 5d3cc36b4e77a27ce7b686b7c59c7072bcb3fa8e
Status affected
Version 1d86cb8d3204337e1853b84d69ea0f30dc0ba973
Status affected
Version 9cec64d3f6d91da590cc4069172254067b43d0b2
Status affected
Version de30fc2ca852365ed635f62d7d818bffc15e55c9
Status affected
Version dfb8712c7acce0689aed6c400a22b35f4d2861fe
Status affected
Version f41cd559f1f3412db8e0acdede05ecf990ebfd8a
Status affected
Version 4.4.192
Version < 4.5
Status affected
Version 4.9.192
Version < 4.10
Status affected
Version 4.14.143
Version < 4.15
Status affected
Version 4.19.72
Version < 4.20
Status affected
Version 5.2.14
Version < 5.3
Status affected
HerstellerLinux
Produkt Linux
Default Statusaffected
Version 5.3
Status affected
Version 0
Version < 5.3
Status unaffected
Version <= 5.10.*
Version 5.10.258
Status unaffected
Version <= 5.15.*
Version 5.15.209
Status unaffected
Version <= 6.1.*
Version 6.1.175
Status unaffected
Version <= 6.6.*
Version 6.6.141
Status unaffected
Version <= 6.12.*
Version 6.12.91
Status unaffected
Version <= 6.18.*
Version 6.18.33
Status unaffected
Version <= 7.0.*
Version 7.0.10
Status unaffected
Version <= *
Version 7.1
Status unaffected
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.18% 0.082
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
Es wurden noch keine Informationen zu CWE veröffentlicht.
https://git.kernel.org/stable/c/521e5aba857fd267624892c8dd6295f22ce0267e
https://git.kernel.org/stable/c/d0cb994605c84a159c1d00d72cdc8583c321ef95
https://git.kernel.org/stable/c/ecf94823c5c6a20790bb76ed2816822b0beb0c22
https://git.kernel.org/stable/c/4bfdcefdaa6092a06cacd59389c7756b36e6de8c
https://git.kernel.org/stable/c/7d3e8d2d648d5f0df29b4710246680f47695fe94
https://git.kernel.org/stable/c/3fa13ceefbc5f36131110342743994cb3de80637
https://git.kernel.org/stable/c/bc7abce4460e490dcb579eec770f175b150b685f
https://git.kernel.org/stable/c/5d3cc36b4e77a27ce7b686b7c59c7072bcb3fa8e