mirror of
https://github.com/0xMarcio/cve.git
synced 2025-11-28 18:48:49 +00:00
1.3 KiB
1.3 KiB
CVE-2024-53685
Description
In the Linux kernel, the following vulnerability has been resolved:ceph: give up on paths longer than PATH_MAXIf the full path to be built by ceph_mdsc_build_path() happens to belonger than PATH_MAX, then this function will enter an endless (retry)loop, effectively blocking the whole task. Most of the machinebecomes unusable, making this a very simple and effective DoSvulnerability.I cannot imagine why this retry was ever implemented, but it seemsrather useless and harmful to me. Let's remove it and fail withENAMETOOLONG instead.
POC
Reference
No PoCs from references.