HIGHCVE-2026-22990Published 2026-01-23Modified 2026-05-11CNA Linux

CVE-2026-22990: libceph: replace overzealous BUG_ON in osdmap_apply_incremental()

In the Linux kernel, the following vulnerability has been resolved: libceph: replace overzealous BUG_ON in osdmap_apply_incremental() If the osdmap is (maliciously) corrupted such that the incremental osdmap epoch is different from what is expected, there is no need to BUG. Instead, just declare the incremental osdmap to be invalid.

CVSS v3.1: 7.5
Severity: HIGH
Fixed in: 0
Affected Products: 2

Fix available

04b106fbb1c7b841cd402abd83eb2447164c799ea5.10.2485.15.1986.1.1616.6.1216.12.666.18.66.196348d70af847b79805374fe628d3809a63fd7df36afd2a4213524bc742b709599a3663aeaf77193c6c6cec3db3b418c4fdf815731bc39e46dff75e1b9aa0b0c14cefece078286d78b97d4c09685e372dd3613770e2677683e65d062da5e31f48c409abe9e00c3f71b5cf75681dbd74ee3f982a99cb690c2b

Affected packages

Linux / Linux
< 9aa0b0c14cefece078286d78b97d4c09685e372d (from f24e9980eb860d8600cbe5ef3d2fd9295320d229) · < 4b106fbb1c7b841cd402abd83eb2447164c799ea (from f24e9980eb860d8600cbe5ef3d2fd9295320d229) · < 6afd2a4213524bc742b709599a3663aeaf77193c (from f24e9980eb860d8600cbe5ef3d2fd9295320d229) · < d3613770e2677683e65d062da5e31f48c409abe9 (from f24e9980eb860d8600cbe5ef3d2fd9295320d229) · < 6c6cec3db3b418c4fdf815731bc39e46dff75e1b (from f24e9980eb860d8600cbe5ef3d2fd9295320d229) · < 6348d70af847b79805374fe628d3809a63fd7df3 (from f24e9980eb860d8600cbe5ef3d2fd9295320d229)
Linux / Linux
2.6.34
Fixed in 0, 5.10.248, 5.15.198, 6.1.161, 6.6.121, 6.12.66, 6.18.6, 6.19

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References

Metrics

Fix available