CVE-2026-52962

In the Linux kernel, the following vulnerability has been resolved: ceph: fix a buffer leak in __ceph_setxattr() The old_blob in __ceph_setxattr() can store ci->i_xattrs.prealloc_blob value during the retry. However, it is never called the ceph_buffer_put() for the old_blob object. This patch fixes the issue of the buffer leak.
Configurations

Configuration 1 (hide)

OR cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:5.3:-:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:5.3:rc6:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:5.3:rc7:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:5.3:rc8:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:7.1:rc1:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:7.1:rc2:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:7.1:rc3:*:*:*:*:*:*

History

14 Jul 2026, 16:18

Type Values Removed Values Added
References () https://git.kernel.org/stable/c/3fa13ceefbc5f36131110342743994cb3de80637 - () https://git.kernel.org/stable/c/3fa13ceefbc5f36131110342743994cb3de80637 - Patch
References () https://git.kernel.org/stable/c/4bfdcefdaa6092a06cacd59389c7756b36e6de8c - () https://git.kernel.org/stable/c/4bfdcefdaa6092a06cacd59389c7756b36e6de8c - Patch
References () https://git.kernel.org/stable/c/521e5aba857fd267624892c8dd6295f22ce0267e - () https://git.kernel.org/stable/c/521e5aba857fd267624892c8dd6295f22ce0267e - Patch
References () https://git.kernel.org/stable/c/5d3cc36b4e77a27ce7b686b7c59c7072bcb3fa8e - () https://git.kernel.org/stable/c/5d3cc36b4e77a27ce7b686b7c59c7072bcb3fa8e - Patch
References () https://git.kernel.org/stable/c/7d3e8d2d648d5f0df29b4710246680f47695fe94 - () https://git.kernel.org/stable/c/7d3e8d2d648d5f0df29b4710246680f47695fe94 - Patch
References () https://git.kernel.org/stable/c/bc7abce4460e490dcb579eec770f175b150b685f - () https://git.kernel.org/stable/c/bc7abce4460e490dcb579eec770f175b150b685f - Patch
References () https://git.kernel.org/stable/c/d0cb994605c84a159c1d00d72cdc8583c321ef95 - () https://git.kernel.org/stable/c/d0cb994605c84a159c1d00d72cdc8583c321ef95 - Patch
References () https://git.kernel.org/stable/c/ecf94823c5c6a20790bb76ed2816822b0beb0c22 - () https://git.kernel.org/stable/c/ecf94823c5c6a20790bb76ed2816822b0beb0c22 - Patch
CPE cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:5.3:rc7:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:7.1:rc2:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:7.1:rc1:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:5.3:rc8:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:5.3:-:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:7.1:rc3:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:5.3:rc6:*:*:*:*:*:*
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 7.8
First Time Linux linux Kernel
Linux
CWE CWE-787

24 Jun 2026, 17:17

Type Values Removed Values Added
New CVE

Information

Published : 2026-06-24 17:17

Updated : 2026-07-14 16:18


NVD link : CVE-2026-52962

Mitre link : CVE-2026-52962

CVE.ORG link : CVE-2026-52962


JSON object : View

Products Affected

linux

  • linux_kernel
CWE
CWE-787

Out-of-bounds Write