Docfate111

**Name of the Vulnerable Software and Affected Versions** Linux kernel versions prior to 6.4.5 **Description** An issue was discovered in the Linux kernel, specifically in net/ceph/messenger v2.c, where an integer signedness error leads to a buffer overflow and remote code execution via HELLO or one of the AUTH frames. This occurs because of an untrusted length taken from a TCP packet in `ceph decode 32`. The issue allows a remote attacker to execute arbitrary code or cause a denial of service. **Recommendations** For Linux kernel versions prior to 6.4.5, update to version 6.4.5 or later to resolve the issue. As a temporary workaround, consider restricting access to the `ceph decode 32` function until a patch is available. Avoid using the `ceph decode 32` function in the affected API endpoint until the issue is resolved.