Linux Kernel Ceph File System Use-After-Free Vulnerability

A use-after-free vulnerability has been identified in the Ceph file system component of the Linux kernel. This issue arises when the kernel trims capability references. After releasing the lock on session capabilities, a capability may be removed by another thread. If the callback functions then use this stale capability reference, it can lead to a crash. The vulnerability is present in the Linux kernel's stable releases, specifically within the Ceph file system's handling of metadata server (MDS) capabilities.

Impact

Exploitation of this vulnerability can cause a crash due to a use-after-free condition, where freed memory is accessed, potentially leading to memory corruption.

Remediation

Users can upgrade to the latest stable version of the Linux kernel to address this vulnerability. The specific commit that fixes this issue is available in the Linux kernel stable tree.