CVE-2025-68284 | Linux Kernel up to 5.15.196/6.1.158/6.6.118/6.12.60/6.17.10 libceph handle_auth_session_key len out-of-bounds write

A vulnerability was found in Linux Kernel up to 5.15.196/6.1.158/6.6.118/6.12.60/6.17.10. It has been declared as critical. This issue affects the function handle_auth_session_key of the component libceph. The manipulation of the argument len results in out-of-bounds write.

This vulnerability is identified as CVE-2025-68284. The attack can only be performed from the local network. There is not any exploit available.

It is recommended to upgrade the affected component.VulDB Recent EntriesRead More