DoS Vulnerability in Linux Kernel Affecting Ceph
CVE-2024-53685
Currently unrated
Summary
In the Linux kernel, a vulnerability in the Ceph file system allows for a denial of service scenario when the function ceph_mdsc_build_path() attempts to construct a path exceeding the system's PATH_MAX limit. This oversight results in an infinite retry loop, rendering the system largely unusable as tasks are blocked indefinitely. As a mitigation, it is proposed to remove the retry mechanism and return an ENAMETOOLONG error instead, effectively preventing the system from becoming unresponsive under such conditions.
Affected Version(s)
Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 0f2b2d9e881c90402dbe28f9ba831775b7992e1f
Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2
Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2
References
Timeline
Vulnerability published
Vulnerability Reserved