CVE-2025-71116
Published: Jan 14, 2026
Modified: May 11, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: libceph: make decode_pool() more resilient against corrupted osdmaps If the osdmap is (maliciously) corrupted such that the encoded length of ceph_pg_pool envelope is less than what is expected for a particular encoding version, out-of-bounds reads may ensue because the only bounds check that is there is based on that length value. This patch adds explicit bounds checks for each field that is decoded or skipped.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected 4f6a7e5ee1393ec4b243b39dac9f36992d161540 - < d061be4c8040ffb1110d537654a038b8b6ad39d2affected 4f6a7e5ee1393ec4b243b39dac9f36992d161540 - < 145d140abda80e33331c5781d6603014fa75d258affected 4f6a7e5ee1393ec4b243b39dac9f36992d161540 - < c82e39ff67353a5a6cbc07b786b8690bd2c45aaaaffected 4f6a7e5ee1393ec4b243b39dac9f36992d161540 - < e927ab132b87ba3f076705fc2684d94b24201ed1affected 4f6a7e5ee1393ec4b243b39dac9f36992d161540 - < 5d0d8c292531fe356c4e94dcfdf7d7212aca9957+2 more versions |
Linux | Linux | affected 3.9unaffected 0 - < 3.9unaffected 5.10.248 - <= 5.10.*unaffected 5.15.198 - <= 5.15.*unaffected 6.1.160 - <= 6.1.*+4 more versions |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now