Impact
The Linux kernel contains a flaw in the __ceph_setxattr() routine where an old_blob buffer created during a retry is never freed, creating a buffer leak (CWE‑772). The leak can accumulate over time until the system exhausts kernel memory, potentially rendering the machine unstable or unavailable.
Affected Systems
All Linux kernels that include the Ceph filesystem driver before the patch that invokes ceph_buffer_put on the old_blob object are affected. The specific version range is not enumerated in the advisory, but any kernel build prior to the hardened commit is vulnerable.
Risk and Exploitability
With a CVSS score of 5.5 the vulnerability is medium severity, and an EPSS score of < 1 % indicates a very low but non‑zero likelihood of exploitation. The issue is not listed in the CISA KEV catalog. The likely scenario requires local or privileged access to a Ceph‑mounted filesystem; an attacker could repeatedly trigger the buggy call to drain memory, leading to denial of service.
OpenCVE Enrichment
Debian DLA