CVE-2025-68283
- Source
- https://cve.org/CVERecord?id=CVE-2025-68283
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-68283.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2025-68283
- Downstream
- Related
- Published
- 2025-12-16T15:06:05.355Z
- Modified
- 2026-03-24T08:59:22.891314Z
- Summary
- libceph: replace BUG_ON with bounds check for map->max_osd
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
libceph: replace BUGON with bounds check for map->maxosd
OSD indexes come from untrusted network packets. Boundary checks are added to validate these against map->max_osd.
[ idryomov: drop BUGON in cephgetprimaryaffinity(), minor cosmetic edits ]
- Database specific
{ "cna_assigner": "Linux", "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/68xxx/CVE-2025-68283.json" }- References
-
- https://git.kernel.org/stable/c/57f5fbae9f1024aba17ff75e00433324115c548a
- https://git.kernel.org/stable/c/b4368b7f97014e1015445d61abd0b27c4c6e8424
- https://git.kernel.org/stable/c/becc488a4d864db338ebd4e313aa3c77da24b604
- https://git.kernel.org/stable/c/e67e3be690f5f7e3b031cf29e8d91e6d02a8e30d
- https://git.kernel.org/stable/c/ec3797f043756a94ea2d0f106022e14ac4946c02
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2025/68xxx/CVE-2025-68283.json
- https://nvd.nist.gov/vuln/detail/CVE-2025-68283
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducedf24e9980eb860d8600cbe5ef3d2fd9295320d229Fixed57f5fbae9f1024aba17ff75e00433324115c548aFixedbecc488a4d864db338ebd4e313aa3c77da24b604Fixede67e3be690f5f7e3b031cf29e8d91e6d02a8e30dFixedb4368b7f97014e1015445d61abd0b27c4c6e8424Fixedec3797f043756a94ea2d0f106022e14ac4946c02