CVE-2026-43419

ceph: fix memory leaks in ceph_mdsc_build_path()

Severity Score

"-"

*CVSS v-

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

In the Linux kernel, the following vulnerability has been resolved: ceph: fix memory leaks in ceph_mdsc_build_path() Add __putname() calls to error code paths that did not free the "path"
pointer obtained by __getname(). If ownership of this pointer is not
passed to the caller via path_info.path, the function must free it
before returning.

*Credits: N/A

CVSS Scores

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality

Integrity

Availability

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2026-05-01 CVE Reserved
2026-05-08 CVE Published
2026-05-12 CVE Updated
2026-05-14 EPSS Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CAPEC

References (9)

URL	Tag	Source
https://git.kernel.org/stable/c/3fd945a79e147ee10f84213976889b29049c3519	Vuln. Introduced
https://git.kernel.org/stable/c/0f2b2d9e881c90402dbe28f9ba831775b7992e1f	Vuln. Introduced
https://git.kernel.org/stable/c/d42ad3f161a5a487f81915c406f46943c7187a0a	Vuln. Introduced
https://git.kernel.org/stable/c/e4b168c64da06954be5d520f6c16469b1cadc069	Vuln. Introduced

URL	Date	SRC

URL	Date	SRC
https://git.kernel.org/stable/c/657dc653b06a3cc0282aea447a3f137fa94066a4	2026-03-25
https://git.kernel.org/stable/c/5895d0164c84d7fec6abc198920c257f55c51899	2026-03-25
https://git.kernel.org/stable/c/097cd68f46686391a98f2618188f0cb7b7570de2	2026-03-19
https://git.kernel.org/stable/c/13b8b9d6f59ef17fb96c298c3a0d62a8306950cc	2026-03-19
https://git.kernel.org/stable/c/040d159a45ded7f33201421a81df0aa2a86e5a0b	2026-03-09

URL	Date	SRC

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 6.6 < 6.6.130 Search vendor "Linux" for product "Linux Kernel" and version " >= 6.6 < 6.6.130"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 6.6 < 6.12.78 Search vendor "Linux" for product "Linux Kernel" and version " >= 6.6 < 6.12.78"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 6.6 < 6.18.19 Search vendor "Linux" for product "Linux Kernel" and version " >= 6.6 < 6.18.19"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 6.6 < 6.19.9 Search vendor "Linux" for product "Linux Kernel" and version " >= 6.6 < 6.19.9"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				>= 6.6 < 7.0 Search vendor "Linux" for product "Linux Kernel" and version " >= 6.6 < 7.0"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				5.10.234 Search vendor "Linux" for product "Linux Kernel" and version "5.10.234"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				5.15.177 Search vendor "Linux" for product "Linux Kernel" and version "5.15.177"		en		Affected
Linux Search vendor "Linux"		Linux Kernel Search vendor "Linux" for product "Linux Kernel"				6.1.125 Search vendor "Linux" for product "Linux Kernel" and version "6.1.125"		en		Affected