CVE-2024-53685

Summary

In the Linux kernel, the following vulnerability has been resolved:

ceph: give up on paths longer than PATH_MAX

If the full path to be built by ceph_mdsc_build_path() happens to be longer than PATH_MAX, then this function will enter an endless (retry) loop, effectively blocking the whole task. Most of the machine becomes unusable, making this a very simple and effective DoS vulnerability.

I cannot imagine why this retry was ever implemented, but it seems rather useless and harmful to me. Let's remove it and fail with ENAMETOOLONG instead.

Affected Software

VendorProductVersion RangeStatus
LinuxLinux9030aaf9bf0a1eee47a154c316c789e959638b0f < 0f2b2d9e881c90402dbe28f9ba831775b7992e1faffected
LinuxLinux9030aaf9bf0a1eee47a154c316c789e959638b0f < d42ad3f161a5a487f81915c406f46943c7187a0aaffected
LinuxLinux9030aaf9bf0a1eee47a154c316c789e959638b0f < e4b168c64da06954be5d520f6c16469b1cadc069affected
LinuxLinux9030aaf9bf0a1eee47a154c316c789e959638b0f < c47ed91156daf328601d02b58d52d9804da54108affected
LinuxLinux9030aaf9bf0a1eee47a154c316c789e959638b0f < 99a37ab76a315c8307eb5b0dc095d8ad9d8efeaaaffected
LinuxLinux9030aaf9bf0a1eee47a154c316c789e959638b0f < 550f7ca98ee028a606aa75705a7e77b1bd11720faffected
LinuxLinux2.6.34affected
LinuxLinux0 < 2.6.34unaffected
LinuxLinux5.10.234 <= 5.10.*unaffected
LinuxLinux5.15.177 <= 5.15.*unaffected
LinuxLinux6.1.125 <= 6.1.*unaffected
LinuxLinux6.6.70 <= 6.6.*unaffected
LinuxLinux6.12.7 <= 6.12.*unaffected
LinuxLinux6.13 <= *unaffected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

References