PT-2025-51689 · Linux+5 · Linux Kernel+5

Published

2025-12-16

·

Updated

2026-05-26

·

CVE-2025-68285

None

No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.14.0-rc2-build2+ #1266
Description The Linux kernel contains a flaw in libceph related to a potential use-after-free condition within the have mon and osd map() function. The issue arises from a race condition in the ceph open session() wait loop, where the client may receive a new monmap or osdmap shortly after the initial map is freed. This can lead to dereferencing an already freed map when checking the epoch values of the monmap and osdmap. The problem is reproducible with generic/395 and generic/397 when KASAN is enabled. The vulnerability occurs due to the lack of appropriate locking when accessing map epoch values.
Recommendations Update to a version newer than 6.14.0-rc2-build2+ #1266.

Exploit

Related Identifiers

ALSA-2026:0443
ALSA-2026:0444
ALSA-2026:0786
ALSA-2026:0793
AZL-72607
CVE-2025-68285
ECHO-5F35-DA10-F832
MGASA-2026-0017
MGASA-2026-0018
OESA-2026-1340
OESA-2026-1341
OESA-2026-2417
OESA-2026-2418
OPENSUSE-SU-2026:20145-1
RHSA-2026:0443
RHSA-2026:0444
RHSA-2026:0489
RHSA-2026:0532
RHSA-2026:0533
RHSA-2026:0534
RHSA-2026:0535
RHSA-2026:0536
RHSA-2026:0537
RHSA-2026:0576
RHSA-2026:0643
RHSA-2026:0747
RHSA-2026:0754
RHSA-2026:0755
RHSA-2026:0786
RHSA-2026:0793
RHSA-2026:0804
RHSA-2026:1820
RHSA-2026:2096
RHSA-2026:2109
RHSA-2026:2115
RHSA-2026:2127
RHSA-2026:2446
RHSA-2026:2557
RHSA-2026:2558
SUSE-SU-2026:0411-1
SUSE-SU-2026:0447-1
SUSE-SU-2026:0471-1
SUSE-SU-2026:0472-1
SUSE-SU-2026:0474-1
SUSE-SU-2026:0496-1
SUSE-SU-2026:0587-1
SUSE-SU-2026:0617-1
SUSE-SU-2026:0928-1
SUSE-SU-2026:0939-1
SUSE-SU-2026:0940-1
SUSE-SU-2026:0941-1
SUSE-SU-2026:0943-1
SUSE-SU-2026:0944-1
SUSE-SU-2026:0945-1
SUSE-SU-2026:0946-1
SUSE-SU-2026:0951-1
SUSE-SU-2026:0953-1
SUSE-SU-2026:0954-1
SUSE-SU-2026:0958-1
SUSE-SU-2026:0961-1
SUSE-SU-2026:0964-1
SUSE-SU-2026:0967-1
SUSE-SU-2026:0970-1
SUSE-SU-2026:0983-1
SUSE-SU-2026:0985-1
SUSE-SU-2026:0992-1
SUSE-SU-2026:0997-1
SUSE-SU-2026:1000-1
SUSE-SU-2026:1002-1
SUSE-SU-2026:1039-1
SUSE-SU-2026:1044-1
SUSE-SU-2026:1045-1
SUSE-SU-2026:1046-1
SUSE-SU-2026:1048-1
SUSE-SU-2026:1049-1
SUSE-SU-2026:1059-1
SUSE-SU-2026:1073-1
SUSE-SU-2026:1078-1
SUSE-SU-2026:1083-1
SUSE-SU-2026:1088-1
SUSE-SU-2026:1089-1
SUSE-SU-2026:1096-1
SUSE-SU-2026:1099-1
SUSE-SU-2026:1100-1
SUSE-SU-2026:1101-1
SUSE-SU-2026:1102-1
SUSE-SU-2026:1125-1
SUSE-SU-2026:1132-1
SUSE-SU-2026:1136-1
SUSE-SU-2026:20207-1
SUSE-SU-2026:20220-1
SUSE-SU-2026:20228-1
SUSE-SU-2026:20477-1
SUSE-SU-2026:20498-1
SUSE-SU-2026:20828-1
SUSE-SU-2026:20829-1
SUSE-SU-2026:20831-1
SUSE-SU-2026:20832-1
SUSE-SU-2026:20837-1
SUSE-SU-2026:20840-1
SUSE-SU-2026:20841-1
SUSE-SU-2026:20842-1
SUSE-SU-2026:20845-1
SUSE-SU-2026:20853-1
SUSE-SU-2026:20854-1
SUSE-SU-2026:20855-1
SUSE-SU-2026:20856-1
SUSE-SU-2026:20862-1
SUSE-SU-2026:20863-1
SUSE-SU-2026:20864-1
SUSE-SU-2026:20865-1
SUSE-SU-2026:20866-1
SUSE-SU-2026:20876-1
SUSE-SU-2026:20885-1
SUSE-SU-2026:20886-1
SUSE-SU-2026:20887-1
SUSE-SU-2026:20888-1
SUSE-SU-2026:20889-1
SUSE-SU-2026:20897-1
SUSE-SU-2026:20898-1
SUSE-SU-2026:20899-1
SUSE-SU-2026:20900-1
SUSE-SU-2026:20944-1
SUSE-SU-2026:20945-1
SUSE-SU-2026:20946-1
SUSE-SU-2026:20947-1
USN-8094-1
USN-8094-2
USN-8094-3
USN-8094-4
USN-8094-5
USN-8095-1
USN-8095-2
USN-8095-3
USN-8095-4
USN-8095-5
USN-8096-1
USN-8096-2
USN-8096-3
USN-8096-4
USN-8096-5
USN-8100-1
USN-8116-1
USN-8125-1
USN-8126-1
USN-8141-1
USN-8152-1
USN-8163-1
USN-8163-2
USN-8165-1
USN-8243-1
USN-8261-1

Affected Products

Debian
Linuxmint
Linux Kernel
Rocky Linux
Ubuntu
Libceph