{
  "affected": [
    {
      "ranges": [
        {
          "events": [
            {
              "introduced": "86968ef21596515958d5f0a40233d02be78ecec0"
            },
            {
              "fixed": "521e5aba857fd267624892c8dd6295f22ce0267e"
            },
            {
              "fixed": "d0cb994605c84a159c1d00d72cdc8583c321ef95"
            },
            {
              "fixed": "ecf94823c5c6a20790bb76ed2816822b0beb0c22"
            },
            {
              "fixed": "4bfdcefdaa6092a06cacd59389c7756b36e6de8c"
            },
            {
              "fixed": "7d3e8d2d648d5f0df29b4710246680f47695fe94"
            },
            {
              "fixed": "3fa13ceefbc5f36131110342743994cb3de80637"
            },
            {
              "fixed": "bc7abce4460e490dcb579eec770f175b150b685f"
            },
            {
              "fixed": "5d3cc36b4e77a27ce7b686b7c59c7072bcb3fa8e"
            }
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "type": "GIT"
        },
        {
          "events": [
            {
              "introduced": "0"
            },
            {
              "last_affected": "1d86cb8d3204337e1853b84d69ea0f30dc0ba973"
            },
            {
              "last_affected": "9cec64d3f6d91da590cc4069172254067b43d0b2"
            },
            {
              "last_affected": "de30fc2ca852365ed635f62d7d818bffc15e55c9"
            },
            {
              "last_affected": "dfb8712c7acce0689aed6c400a22b35f4d2861fe"
            },
            {
              "last_affected": "f41cd559f1f3412db8e0acdede05ecf990ebfd8a"
            }
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "type": "GIT"
        },
        {
          "events": [
            {
              "introduced": "4.4.192"
            },
            {
              "fixed": "4.5"
            }
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "type": "GIT"
        },
        {
          "events": [
            {
              "introduced": "4.9.192"
            },
            {
              "fixed": "4.10"
            }
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "type": "GIT"
        },
        {
          "events": [
            {
              "introduced": "4.14.143"
            },
            {
              "fixed": "4.15"
            }
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "type": "GIT"
        },
        {
          "events": [
            {
              "introduced": "4.19.72"
            },
            {
              "fixed": "4.20"
            }
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "type": "GIT"
        },
        {
          "events": [
            {
              "introduced": "5.2.14"
            },
            {
              "fixed": "5.3"
            }
          ],
          "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
          "type": "GIT"
        }
      ]
    },
    {
      "package": {
        "ecosystem": "Linux",
        "name": "Kernel"
      },
      "ranges": [
        {
          "events": [
            {
              "introduced": "5.3.0"
            },
            {
              "fixed": "5.10.258"
            }
          ],
          "type": "ECOSYSTEM"
        },
        {
          "events": [
            {
              "introduced": "5.11.0"
            },
            {
              "fixed": "5.15.209"
            }
          ],
          "type": "ECOSYSTEM"
        },
        {
          "events": [
            {
              "introduced": "5.16.0"
            },
            {
              "fixed": "6.1.175"
            }
          ],
          "type": "ECOSYSTEM"
        },
        {
          "events": [
            {
              "introduced": "6.2.0"
            },
            {
              "fixed": "6.6.141"
            }
          ],
          "type": "ECOSYSTEM"
        },
        {
          "events": [
            {
              "introduced": "6.7.0"
            },
            {
              "fixed": "6.12.91"
            }
          ],
          "type": "ECOSYSTEM"
        },
        {
          "events": [
            {
              "introduced": "6.13.0"
            },
            {
              "fixed": "6.18.33"
            }
          ],
          "type": "ECOSYSTEM"
        },
        {
          "events": [
            {
              "introduced": "6.19.0"
            },
            {
              "fixed": "7.0.10"
            }
          ],
          "type": "ECOSYSTEM"
        }
      ]
    }
  ],
  "database_specific": {
    "cna_assigner": "Linux",
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/52xxx/CVE-2026-52962.json"
  },
  "details": "In the Linux kernel, the following vulnerability has been resolved:\n\nceph: fix a buffer leak in __ceph_setxattr()\n\nThe old_blob in __ceph_setxattr() can store\nci-\u003ei_xattrs.prealloc_blob value during the retry.\nHowever, it is never called the ceph_buffer_put()\nfor the old_blob object. This patch fixes the issue of\nthe buffer leak.",
  "id": "CVE-2026-52962",
  "modified": "2026-07-12T03:54:34.273652746Z",
  "published": "2026-06-24T16:28:42.688Z",
  "references": [
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/3fa13ceefbc5f36131110342743994cb3de80637"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/4bfdcefdaa6092a06cacd59389c7756b36e6de8c"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/521e5aba857fd267624892c8dd6295f22ce0267e"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/5d3cc36b4e77a27ce7b686b7c59c7072bcb3fa8e"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/7d3e8d2d648d5f0df29b4710246680f47695fe94"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/bc7abce4460e490dcb579eec770f175b150b685f"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/d0cb994605c84a159c1d00d72cdc8583c321ef95"
    },
    {
      "type": "WEB",
      "url": "https://git.kernel.org/stable/c/ecf94823c5c6a20790bb76ed2816822b0beb0c22"
    },
    {
      "type": "ADVISORY",
      "url": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/52xxx/CVE-2026-52962.json"
    },
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2026-52962"
    },
    {
      "type": "PACKAGE",
      "url": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git"
    }
  ],
  "schema_version": "1.7.5",
  "summary": "ceph: fix a buffer leak in __ceph_setxattr()"
}