vulnerability

Red Hat: CVE-2025-68285: kernel: libceph: fix potential use-after-free in have_mon_and_osd_map() (Multiple Advisories)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
7	(AV:L/AC:M/Au:S/C:C/I:C/A:C)	Dec 16, 2025	Jan 15, 2026	Feb 5, 2026

Severity

CVSS

(AV:L/AC:M/Au:S/C:C/I:C/A:C)

Published

Dec 16, 2025

Added

Jan 15, 2026

Modified

Feb 5, 2026

Description

A use-after-free vulnerability was found in the Ceph client session initialization in the Linux kernel. The have_mon_and_osd_map() function checks map epochs without holding the appropriate locks, racing with concurrent map updates that free the old map. This can result in dereferencing freed memory during CephFS or RBD mount operations.

Solutions

redhat-upgrade-kernelredhat-upgrade-kernel-rt

References

NVD-CVE-2025-68285
REDHAT-RHSA-2026:0443
REDHAT-RHSA-2026:0444
REDHAT-RHSA-2026:0489
REDHAT-RHSA-2026:0747
REDHAT-RHSA-2026:0786
REDHAT-RHSA-2026:0793
REDHAT-RHSA-2026:0804
REDHAT-RHSA-2026:1820

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today