Description

In the Linux kernel, the following vulnerability has been resolved: libceph: prevent potential out-of-bounds writes in handle_auth_session_key() The len field originates from untrusted network packets. Boundary checks have been added to prevent potential out-of-bounds writes when decrypting the connection secret or processing service tickets. [ idryomov: changelog ]

INFO

Published Date :

2025-12-16T15:06:06.235Z

Last Modified :

2026-01-02T15:34:48.915Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2025-68284 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-68284.

URL Resource
https://git.kernel.org/stable/c/5ef575834ca99f719d7573cdece9df2fe2b72424 cve-icon cve-icon
https://git.kernel.org/stable/c/6920ff09bf911bc919cd7a6b7176fbdd1a6e6850 cve-icon cve-icon
https://git.kernel.org/stable/c/7fce830ecd0a0256590ee37eb65a39cbad3d64fc cve-icon cve-icon
https://git.kernel.org/stable/c/8dfcc56af28cffb8f25fb9be37b3acc61f2a3d09 cve-icon cve-icon
https://git.kernel.org/stable/c/ccbccfba25e9aa395daaea156b5e7790910054c4 cve-icon cve-icon
https://git.kernel.org/stable/c/f22c55a20a2d9ffbbac57408d5d488cef8201e9d cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2025121637-CVE-2025-68284-132f@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2025-68284 cve-icon
https://www.cve.org/CVERecord?id=CVE-2025-68284 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact