Description
In the Linux kernel, the following vulnerability has been resolved:

ceph: fix a buffer leak in __ceph_setxattr()

The old_blob in __ceph_setxattr() can store
ci->i_xattrs.prealloc_blob value during the retry.
However, it is never called the ceph_buffer_put()
for the old_blob object. This patch fixes the issue of
the buffer leak.
Published: 2026-06-24
Score: n/a
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The Linux kernel contains a flaw in the __ceph_setxattr() routine where an old_blob buffer can be stored during a retry but is never freed, causing a memory leak. This leak can accumulate over time, potentially exhausting kernel memory and leading to system instability or denial of service. The weakness is a buffer leak, a type of memory management flaw (CWE-401).

Affected Systems

The flaw exists in the Linux kernel; affected kernels are all versions released before the patch that adds ceph_buffer_put on the old_blob object. The exact affected versions are not specified, but all kernels without this patch are vulnerable.

Risk and Exploitability

No exploitability metrics are available, and the vulnerability is not listed in the CISA KEV catalog. The EPSS score is not available, so the likelihood of exploitation is uncertain. The likely attack vector is the usage of Ceph extended attributes; if an application or user invokes __ceph_setxattr(), the buffer leak will occur. Attack requires local or privileged access to the filesystem that uses Ceph, and would primarily lead to resource exhaustion rather than remote code execution.

Generated by OpenCVE AI on June 24, 2026 at 18:24 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Update the kernel to a version that includes the patch that frees the old_blob buffer in __ceph_setxattr().
  • If the kernel cannot be upgraded immediately, disable the use of Ceph extended attributes on critical systems or limit it to trusted users.
  • Monitor system memory consumption for abnormal growth and be prepared to reboot if memory pressure becomes critical.
  • If Ceph is not needed, consider removing or disabling the Ceph module from the kernel configuration.

Generated by OpenCVE AI on June 24, 2026 at 18:24 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Wed, 24 Jun 2026 18:45:00 +0000

Type Values Removed Values Added
Weaknesses CWE-401

Wed, 24 Jun 2026 17:15:00 +0000

Type Values Removed Values Added
Description In the Linux kernel, the following vulnerability has been resolved: ceph: fix a buffer leak in __ceph_setxattr() The old_blob in __ceph_setxattr() can store ci->i_xattrs.prealloc_blob value during the retry. However, it is never called the ceph_buffer_put() for the old_blob object. This patch fixes the issue of the buffer leak.
Title ceph: fix a buffer leak in __ceph_setxattr()
First Time appeared Linux
Linux linux Kernel
CPEs cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
Vendors & Products Linux
Linux linux Kernel
References

Subscriptions

Linux Linux Kernel
cve-icon MITRE

Status: PUBLISHED

Assigner: Linux

Published:

Updated: 2026-06-24T16:28:42.688Z

Reserved: 2026-06-09T07:44:35.374Z

Link: CVE-2026-52962

cve-icon Vulnrichment

No data.

cve-icon NVD

No data.

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-24T18:30:06Z

Weaknesses
  • CWE-401

    Missing Release of Memory after Effective Lifetime