CVE-2025-38660
[ceph] parse_longname(): strrchr() expects NUL-terminated string
References
Notes
carnil> Introduced in dd66df0053ef "ceph: add support for encrypted snapshot names". carnil> Vulnerable versions: 6.6.
Bugs
Status
| Branch | Status |
|---|---|
| upstream | released (6.17-rc1) [101841c38346f4ca41dc1802c867da990ffb32eb] |
| 6.18-upstream-stable | N/A "Fixed before branching point" |
| 6.17-upstream-stable | N/A "Fixed before branching point" |
| 6.16-upstream-stable | released (6.16.1) [493479af8af3ab907f49e99323777d498a4fbd2b] |
| 6.15-upstream-stable | released (6.15.10) [3145b2b11492d61c512bbc59660bb823bc757f48] |
| 6.12-upstream-stable | released (6.12.42) [bb80f7618832d26f7e395f52f82b1dac76223e5f] |
| 6.6-upstream-stable | needed |
| 6.1-upstream-stable | N/A "Vulnerable code not present" |
| 5.10-upstream-stable | N/A "Vulnerable code not present" |
| sid | released (6.16.3-1) |
| 6.12-trixie-security | released (6.12.43-1) |
| 6.1-bookworm-security | N/A "Vulnerable code not present" |
| 5.10-bullseye-security | N/A "Vulnerable code not present" |