CVE-2026-22990
Published: Jan 23, 2026
Modified: May 11, 2026
CVSS v3.1
7.5
Description
In the Linux kernel, the following vulnerability has been resolved: libceph: replace overzealous BUG_ON in osdmap_apply_incremental() If the osdmap is (maliciously) corrupted such that the incremental osdmap epoch is different from what is expected, there is no need to BUG. Instead, just declare the incremental osdmap to be invalid.
| Vendor | Product | Versions |
|---|---|---|
Linux | Linux | affected f24e9980eb860d8600cbe5ef3d2fd9295320d229 - < 9aa0b0c14cefece078286d78b97d4c09685e372daffected f24e9980eb860d8600cbe5ef3d2fd9295320d229 - < 4b106fbb1c7b841cd402abd83eb2447164c799eaaffected f24e9980eb860d8600cbe5ef3d2fd9295320d229 - < 6afd2a4213524bc742b709599a3663aeaf77193caffected f24e9980eb860d8600cbe5ef3d2fd9295320d229 - < d3613770e2677683e65d062da5e31f48c409abe9affected f24e9980eb860d8600cbe5ef3d2fd9295320d229 - < 6c6cec3db3b418c4fdf815731bc39e46dff75e1b+2 more versions |
Linux | Linux | affected 2.6.34unaffected 0 - < 2.6.34unaffected 5.10.248 - <= 5.10.*unaffected 5.15.198 - <= 5.15.*unaffected 6.1.161 - <= 6.1.*+4 more versions |
CVSS v3.1 Details
CVSS v3.1 Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now