A subtle logic bug in the Linux kernel’s Ceph client has been assigned CVE‑2025‑40362 and patched: in multi‑filesystem (multifs) Ceph deployments the MDS authorization caps check could be applied to the wrong filesystem because the code did not validate the filesystem name (fsname) along with...
