CVE-2023-53846

CVE-2023-53846: In the Linux kernel f2fs, a direct node truncation path could traverse node addr mappings out of bounds, causing slab-use-after-free. The fix adds a sanity check on the dnode page during truncate_dnode() to prevent out-of-bound access and to record an ERROR_INVALID_NODE_REFERENCE ...

CVE-2023-53846 f2fs: fix to do sanity check on direct node in truncate_dnode()

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to do sanity check on direct node in truncatednode syzbot reports below bug: BUG: KASAN: slab-use-after-free in f2fstruncatedatablocksrange+0x122a/0x14c0 fs/f2fs/file.c:574 Read of size 4 at addr ffff88802a25c000 by tas...

CVE-2025-38677 f2fs: fix to avoid out-of-boundary access in dnode page

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid out-of-boundary access in dnode page As Jiaming Zhang reported: dumpstack lib/dumpstack.c:94 inline dumpstacklvl+0x1c1/0x2a0 lib/dumpstack.c:120 printaddressdescription mm/kasan/report.c:378 inline...

CVE-2024-44942

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to do sanity check on F2FSINLINEDATA flag in inode during GC syzbot reports a f2fs bug as below: ------------ cut here ------------ kernel BUG at fs/f2fs/inline.c:258! CPU: 1 PID: 34 Comm: kworker/u8:2 Not tainted...

UBUNTU-CVE-2024-35844

In the Linux kernel, the following vulnerability has been resolved: f2fs: compress: fix reservecblocks counting error when out of space When a file only needs one directnode, performing the following operations will cause the file to be unrepairable: unisoc ./f2fsio compress test.apk unisoc df -h...

PT-2025-49737

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.4.0-rc7-syzkaller-00041-ge660abd551f1 Description The Linux kernel contains a flaw within the f2fs file system related to handling inode truncation. Specifically, a missing sanity check in the truncate dnode...