SB20251216166 - Buffer overflow in Linux kernel ceph
Published: December 16, 2025
Security Bulletin ID
SB20251216166
Severity
Low
Patch available
YES
Number of vulnerabilities
1
Exploitation vector
Local access
Highest impact
Code execution
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 1 security vulnerability.
1) Buffer overflow (CVE-ID: CVE-2025-68283)
The vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to memory corruption within the decode_new_primary_temp(), ceph_get_primary_affinity(), decode_new_primary_affinity() and decode_new_up_state_weight() functions in net/ceph/osdmap.c. A local user can escalate privileges on the system.
Remediation
Install update from vendor's website.
References
- https://git.kernel.org/stable/c/57f5fbae9f1024aba17ff75e00433324115c548a
- https://git.kernel.org/stable/c/b4368b7f97014e1015445d61abd0b27c4c6e8424
- https://git.kernel.org/stable/c/becc488a4d864db338ebd4e313aa3c77da24b604
- https://git.kernel.org/stable/c/e67e3be690f5f7e3b031cf29e8d91e6d02a8e30d
- https://git.kernel.org/stable/c/ec3797f043756a94ea2d0f106022e14ac4946c02