In the Linux kernel, the following vulnerability has been resolved:
libceph: define and enforce CEPHMAXKEY_LEN
When decoding the key, verify that the key material would fit into a fixed-size buffer in processauthdone() and generally has a sane length.
The new CEPHMAXKEYLEN check replaces the existing check for a key with no key material which is a) not universal since CEPHCRYPTO_NONE has to be excluded and b) doesn't provide much value since a smaller than needed key is just as invalid as no key -- this has to be handled elsewhere anyway.
{
"cna_assigner": "Linux",
"osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/43xxx/CVE-2026-43304.json"
}