22 matches found
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002713)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002713 advisory. The sanitycheckckpt function in fs/f2fs/super.c in the Linux kernel before 4.12.4 does not validate the blkoff and segno arrays, which allows local users to gain...
CVE-2023-52848
In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to drop metainode's page cache in f2fsputsuper syzbot reports a kernel bug as below: F2FS-fs loop1: detect filesystem reference count leak during umount, type: 10, count: 1 kernel BUG at fs/f2fs/super.c:1639! CPU: 0 PID...
SUSE CVE-2023-2898
There is a null-pointer-dereference flaw found in f2fswriteendio in fs/f2fs/data.c in the Linux kernel. This flaw allows a local privileged user to cause a denial of service problem...
CVE-2021-44879
In gcdatasegment in fs/f2fs/gc.c in the Linux kernel before 5.16.3, special files are not considered, leading to a movedatapage NULL pointer dereference...
CVE-2021-44879
In gcdatasegment in fs/f2fs/gc.c in the Linux kernel before 5.16.3, special files are not considered, leading to a movedatapage NULL pointer dereference...
An out-of-bounds (OOB) memory access flaw was found in fs/f2fs/node.c in the f2fs module in the Linux kernel in versions before 5.12.0-rc4. A bounds check failure allows a local attacker to gain access to out-of-bounds memory leading to a system crash or a leak of internal kernel information. The highest threat from this vulnerability is to system availability.
...
CVE-2018-14614
CVE-2018-14614 concerns a Linux kernel issue up to version 4.17.10 where mounting an f2fs image triggers an out-of-bounds access in __remove_dirty_segment() within fs/f2fs/segment.c. Publicly documented details identify the affected component as the kernel’s f2fs filesystem driver, with a local a...
Design/Logic Flaw
An issue was discovered in fs/f2fs/super.c in the Linux kernel through 4.17.3, which does not properly validate secsperzone in a corrupted f2fs image, as demonstrated by a divide-by-zero error...
CVE-2018-13097
An issue was discovered in fs/f2fs/super.c in the Linux kernel through 4.17.3. There is an out-of-bounds read or a divide-by-zero error for an incorrect userblockcount in a corrupted f2fs image, leading to a denial of service BUG...
CVE-2018-13099
CVE-2018-13099 concerns the Linux kernel fs/f2fs/inline.c up to version 4.4, where a denial of service can occur via an out-of-bounds memory access and BUG when a modified f2fs image contains an inline inode with an invalid reserved blkaddr. The connected Nessus advisories (Unity Linux) describe ...
CVE-2018-13099
An issue was discovered in fs/f2fs/inline.c in the Linux kernel through 4.4. A denial of service out-of-bounds memory access and BUG can occur for a modified f2fs filesystem image in which an inline inode contains an invalid reserved blkaddr...
CVE-2018-13097
An issue was discovered in fs/f2fs/super.c in the Linux kernel through 4.17.3. There is an out-of-bounds read or a divide-by-zero error for an incorrect userblockcount in a corrupted f2fs image, leading to a denial of service BUG...
CVE-2018-13100
CVE-2018-13100 concerns the Linux kernel, specifically fs/f2fs/super.c up to version 4.17.3, where improper validation of secs_per_zone in a corrupted f2fs image can trigger a divide-by-zero error. The connected advisories confirm the issue and reproduce conditions but do not provide a patch vers...
CVE-2018-13100
An issue was discovered in fs/f2fs/super.c in the Linux kernel through 4.17.3, which does not properly validate secsperzone in a corrupted f2fs image, as demonstrated by a divide-by-zero error...
CVE-2018-13096
An issue was discovered in fs/f2fs/super.c in the Linux kernel through 4.14. A denial of service out-of-bounds memory access and BUG can occur upon encountering an abnormal bitmap size when mounting a crafted f2fs image...
Null pointer dereference
fs/f2fs/segment.c in the Linux kernel before 4.13 allows local users to cause a denial of service NULL pointer dereference and panic by using a noflushmerge option that triggers a NULL value for a flushcmdcontrol data structure...
CVE-2017-18241
fs/f2fs/segment.c in the Linux kernel before 4.13 allows local users to cause a denial of service NULL pointer dereference and panic by using a noflushmerge option that triggers a NULL value for a flushcmdcontrol data structure...
UBUNTU-CVE-2017-18193
fs/f2fs/extentcache.c in the Linux kernel before 4.13 mishandles extent trees, which allows local users to cause a denial of service BUG via an application with multiple threads...
Design/Logic Flaw
The sanitycheckckpt function in fs/f2fs/super.c in the Linux kernel before 4.12.4 does not validate the blkoff and segno arrays, which allows local users to gain privileges via unspecified vectors...
CVE-2017-10663
The sanitycheckckpt function in fs/f2fs/super.c in the Linux kernel before 4.12.4 does not validate the blkoff and segno arrays, which allows local users to gain privileges via unspecified vectors...