Advisories » MGASA-2025-0222

Updated ceph packages fix vulnerability

Publication date: 01 Sep 2025
Modification date: 01 Sep 2025
Type: security
Affected Mageia releases : 9
CVE: CVE-2025-52555

Description

Security regression (CVE-2025-52555) that would have allowed an user to
read, write and execute to any directory owned by root as long as they
chmod 777 it.
                

References

• https://bugs.mageia.org/show_bug.cgi?id=34400
• https://www.openwall.com/lists/oss-security/2025/06/26/1
• https://github.com/ceph/ceph/commit/64f0d786a078a79843c1c1da9cae5e2e603371af
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2025-52555

SRPMS

9/core

• ceph-18.2.7-2.mga9