10 matches found
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-004333)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004333 advisory. In the Linux kernel 5.0.21, mounting a crafted f2fs filesystem image can cause a NULL pointer dereference in f2fsrecoverfsyncdata in fs/f2fs/recovery.c. This is...
Unity Linux 20.1070e Security Update: kernel (UTSA-2026-001321)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001321 advisory. In the Linux kernel 5.0.21, mounting a crafted f2fs filesystem image can cause a NULL pointer dereference in f2fsrecoverfsyncdata in fs/f2fs/recovery.c. This is...
CVE-2025-68769
In the Linux kernel, the following vulnerability has been resolved: f2fs: fix return value of f2fsrecoverfsyncdata With below scripts, it will trigger panic in f2fs: mkfs.f2fs -f /dev/vdd mount /dev/vdd /mnt/f2fs touch /mnt/f2fs/foo sync echo 111 /mnt/f2fs/foo f2fsio fsync /mnt/f2fs/foo f2fsio...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-992745)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992745 advisory. In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to do sanity check on destination blkaddr during recovery As Wenqing Liu reported in...
Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986984)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986984 advisory. In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid racing on fsyncentryslab by multi filesystem instances As syzbot reported, the...
PT-2025-37575
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A flaw exists in the Linux kernel's f2fs file system related to data block recovery. An inconsistency between the SIT table and inode mapping table can trigger a warning during SIT tab...
CVE-2021-47335
In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid racing on fsyncentryslab by multi filesystem instances As syzbot reported, there is an use-after-free issue during f2fs recovery: Use-after-free write at 0xffff88823bc16040 in kfence-10:...
DEBIAN-CVE-2024-27032
In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid potential panic during recovery During recovery, if FAULTBLOCK is on, it is possible that f2fsreservenewblock will return -ENOSPC during recovery, then it may trigger panic. Also, if fault injection rate is 1 a...
CVE-2024-27032 f2fs: fix to avoid potential panic during recovery
In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid potential panic during recovery During recovery, if FAULTBLOCK is on, it is possible that f2fsreservenewblock will return -ENOSPC during recovery, then it may trigger panic. Also, if fault injection rate is 1 a...
PT-2022-35145 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.0.3 Description: The issue concerns a fix for a sanity check on destination blkaddr during recovery in the f2fs component. The actual impact and attack plausibility have not yet been proven. Recommendations:...