In the Linux kernel, the following vulnerability has been resolved:
ceph: fix a buffer leak in __ceph_setxattr()
The old_blob in __ceph_setxattr() can store
ci->i_xattrs.prealloc_blob value during the retry.
However, it is never called the ceph_buffer_put()
for the old_blob object. This patch fixes the issue of
the buffer leak.
References
Configurations
Configuration 1 (hide)
|
History
14 Jul 2026, 16:18
| Type | Values Removed | Values Added |
|---|---|---|
| References | () https://git.kernel.org/stable/c/3fa13ceefbc5f36131110342743994cb3de80637 - Patch | |
| References | () https://git.kernel.org/stable/c/4bfdcefdaa6092a06cacd59389c7756b36e6de8c - Patch | |
| References | () https://git.kernel.org/stable/c/521e5aba857fd267624892c8dd6295f22ce0267e - Patch | |
| References | () https://git.kernel.org/stable/c/5d3cc36b4e77a27ce7b686b7c59c7072bcb3fa8e - Patch | |
| References | () https://git.kernel.org/stable/c/7d3e8d2d648d5f0df29b4710246680f47695fe94 - Patch | |
| References | () https://git.kernel.org/stable/c/bc7abce4460e490dcb579eec770f175b150b685f - Patch | |
| References | () https://git.kernel.org/stable/c/d0cb994605c84a159c1d00d72cdc8583c321ef95 - Patch | |
| References | () https://git.kernel.org/stable/c/ecf94823c5c6a20790bb76ed2816822b0beb0c22 - Patch | |
| CPE | cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:* cpe:2.3:o:linux:linux_kernel:5.3:rc7:*:*:*:*:*:* cpe:2.3:o:linux:linux_kernel:7.1:rc2:*:*:*:*:*:* cpe:2.3:o:linux:linux_kernel:7.1:rc1:*:*:*:*:*:* cpe:2.3:o:linux:linux_kernel:5.3:rc8:*:*:*:*:*:* cpe:2.3:o:linux:linux_kernel:5.3:-:*:*:*:*:*:* cpe:2.3:o:linux:linux_kernel:7.1:rc3:*:*:*:*:*:* cpe:2.3:o:linux:linux_kernel:5.3:rc6:*:*:*:*:*:* |
|
| CVSS |
v2 : v3 : |
v2 : unknown
v3 : 7.8 |
| First Time |
Linux linux Kernel
Linux |
|
| CWE | CWE-787 |
24 Jun 2026, 17:17
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2026-06-24 17:17
Updated : 2026-07-14 16:18
NVD link : CVE-2026-52962
Mitre link : CVE-2026-52962
CVE.ORG link : CVE-2026-52962
JSON object : View
Products Affected
linux
- linux_kernel
CWE
CWE-787
Out-of-bounds Write
