Bounds Check Vulnerability in Linux Kernel Affecting Ceph
CVE-2025-68283

Currently unrated

Key Information:

Vendor

Linux
Status
Linux
Vendor
CVE Published:
16 December 2025

What is CVE-2025-68283?

A boundary check vulnerability has been identified in the Linux kernel's Ceph module, specifically concerning the handling of object storage device (OSD) indexes derived from untrusted network packets. This issue was addressed by implementing bounds checks to ensure that OSD indexes do not exceed the maximum allowable value defined by the map, thus enhancing the module's robustness against potentially malicious inputs.

Affected Version(s)

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 57f5fbae9f1024aba17ff75e00433324115c548a

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2

References

https://git.kernel.org/stable/c/57f5fbae9f1024aba17ff75e0...
https://git.kernel.org/stable/c/becc488a4d864db338ebd4e31...
https://git.kernel.org/stable/c/e67e3be690f5f7e3b031cf29e...

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.
CVE-2025-68283 : Bounds Check Vulnerability in Linux Kernel Affecting Ceph