Vulnerability Description
In the Linux kernel, the following vulnerability has been resolved: libceph: make decode_pool() more resilient against corrupted osdmaps If the osdmap is (maliciously) corrupted such that the encoded length of ceph_pg_pool envelope is less than what is expected for a particular encoding version, out-of-bounds reads may ensue because the only bounds check that is there is based on that length value. This patch adds explicit bounds checks for each field that is decoded or skipped.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Linux | Linux Kernel | >= 3.9.1, < 5.10.248 |
Related Weaknesses (CWE)
References
- https://git.kernel.org/stable/c/145d140abda80e33331c5781d6603014fa75d258Patch
- https://git.kernel.org/stable/c/2acb8517429ab42146c6c0ac1daed1f03d2fd125Patch
- https://git.kernel.org/stable/c/5d0d8c292531fe356c4e94dcfdf7d7212aca9957Patch
- https://git.kernel.org/stable/c/8c738512714e8c0aa18f8a10c072d5b01c83db39Patch
- https://git.kernel.org/stable/c/c82e39ff67353a5a6cbc07b786b8690bd2c45aaaPatch
- https://git.kernel.org/stable/c/d061be4c8040ffb1110d537654a038b8b6ad39d2Patch
- https://git.kernel.org/stable/c/e927ab132b87ba3f076705fc2684d94b24201ed1Patch
FAQ
What is CVE-2025-71116?
CVE-2025-71116 is a vulnerability with a CVSS score of 7.1 (HIGH). In the Linux kernel, the following vulnerability has been resolved: libceph: make decode_pool() more resilient against corrupted osdmaps If the osdmap is (maliciously) corrupted such that the encode...
How severe is CVE-2025-71116?
CVE-2025-71116 has been rated HIGH with a CVSS base score of 7.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2025-71116?
Check the references section above for vendor advisories and patch information. Affected products include: Linux Linux Kernel.