CVE-2026-22990
libceph: replace overzealous BUG_ON in osdmap_apply_incremental()
In the Linux kernel, the following vulnerability has been resolved:
libceph: replace overzealous BUG_ON in osdmap_apply_incremental()
If the osdmap is (maliciously) corrupted such that the incremental
osdmap epoch is different from what is expected, there is no need to
BUG. Instead, just declare the incremental osdmap to be invalid.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Affected products
Linux · LinuxWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
https://git.kernel.org/stable/c/4b106fbb1c7b841cd402abd83eb2447164c799eahttps://git.kernel.org/stable/c/6348d70af847b79805374fe628d3809a63fd7df3https://git.kernel.org/stable/c/6afd2a4213524bc742b709599a3663aeaf77193chttps://git.kernel.org/stable/c/6c6cec3db3b418c4fdf815731bc39e46dff75e1bhttps://git.kernel.org/stable/c/9aa0b0c14cefece078286d78b97d4c09685e372dhttps://git.kernel.org/stable/c/d3613770e2677683e65d062da5e31f48c409abe9https://git.kernel.org/stable/c/e00c3f71b5cf75681dbd74ee3f982a99cb690c2b