Use-After-Free Vulnerability in Ceph Library for Linux Kernel
CVE-2025-68285
What is CVE-2025-68285?
A use-after-free vulnerability exists in the Ceph library of the Linux kernel, which can lead to potential system instability and security risks. The issue arises in the wait loop within __ceph_open_session(), where a race condition can occur when the client receives a new monmap or osdmap just after an initial map has been handled. This can cause dereferencing of already freed memory, leading to undefined behavior. The vulnerability can be triggered during specific workloads, such as mounting Ceph filesystems. Proper locking mechanisms and condition checks are needed to ensure safe access to these maps and avoid the risk of exploiting this flaw.
Affected Version(s)
Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2
Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 05ec43e9a9de67132dc8cd3b22afef001574947f
Linux 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2 < 7c8ccdc1714d9fabecd26e1be7db1771061acc6e