90 matches found
F2fs-Tools F2fs.Fsck init_node_manager Information Disclosure Vulnerability
Summary An exploitable information disclosure vulnerability exists in the initnodemanager functionality of F2fs-Tools F2fs.Fsck 1.12 and 1.13. A specially crafted filesystem can be used to disclose information. An attacker can provide a malicious file to trigger this vulnerability. Tested Version...
F2fs-Tools F2fs.Fsck fsck_chk_orphan_node Code Execution Vulnerability
Summary An exploitable code execution vulnerability exists in the fsckchkorphannode functionality of F2fs-Tools F2fs.Fsck 1.13. A specially crafted f2fs filesystem can cause a heap buffer overflow resulting in a code execution. An attacker can provide a malicious file to trigger this vulnerabilit...
F2fs-Tools F2fs.Fsck dev_read Information Disclosure Vulnerability
Summary An exploitable information disclosure vulnerability exists in the devread functionality of F2fs-Tools F2fs.Fsck 1.13. A specially crafted f2fs filesystem can cause an uninitialized read resulting in an information disclosure. An attacker can provide a malicious file to trigger this...
F2fs-Tools F2fs.Fsck filesystem checking Information Disclosure Vulnerability
Summary An exploitable information disclosure vulnerability exists in the getdnodeofdata functionality of F2fs-Tools F2fs.Fsck 1.13. A specially crafted f2fs filesystem can cause information disclosure resulting in a information disclosure. An attacker can provide a malicious file to trigger this...
Fedora 33 : f2fs-tools (2020-a0b24e9377)
Update to 1.14.0 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. C Tenable Network Security, Inc...
PT-2020-6546 · Unknown +1 · F2Fs-Tools +1
Name of the Vulnerable Software and Affected Versions: F2fs-Tools versions 1.13 Description: The issue is related to incorrect external management of file names or paths, which can be exploited to delete arbitrary files by creating a specially crafted f2fs filesystem. A specially crafted f2fs...
PT-2020-6547 · Unknown +1 · F2Fs-Tools +1
Name of the Vulnerable Software and Affected Versions: F2fs-Tools F2fs.Fsck versions 1.12 through 1.13 Description: An information disclosure issue exists in the init node manager functionality. A specially crafted filesystem can be used to disclose information. An attacker can provide a maliciou...
PT-2020-6548 · Unknown +1 · F2Fs-Tools +1
Name of the Vulnerable Software and Affected Versions: F2fs-Tools F2fs.Fsck version 1.13 Description: An exploitable information disclosure issue exists in the dev read functionality. A specially crafted f2fs filesystem can cause an uninitialized read, resulting in information disclosure. An...
PT-2020-6549 · Unknown +1 · F2Fs-Tools +1
Name of the Vulnerable Software and Affected Versions: F2fs-Tools version 1.13 Description: The issue is related to a heap buffer overflow that can be triggered by a specially crafted f2fs filesystem, potentially allowing an attacker to execute arbitrary code. This can be achieved by providing a...
F2fs-tools fsck.f2fs sanity_check_area_boundary code execution vulnerability
Summary An exploitable code execution vulnerability exists in the file system checking functionality of fsck.f2fs 1.12.0. A specially crafted f2fs file can cause a logic flaw and out-of-bounds heap operations, resulting in code execution. An attacker can provide a malicious file to trigger this...