CVE-2025-38333 f2fs: fix to bail out in get_new_segment()

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to bail out in getnewsegment ------------ cut here ------------ WARNING: CPU: 3 PID: 579 at fs/f2fs/segment.c:2832 newcurseg+0x5e8/0x6dc pc : newcurseg+0x5e8/0x6dc Call trace: newcurseg+0x5e8/0x6dc...

Missing Authorization

Overview Affected versions of this package are vulnerable to Missing Authorization via the cloneAction of the segment management. An attacker can bypass intended permission restrictions and clone segments even if they lack the necessary permissions to create new ones by exploiting the missing...

CVE-2024-53220 f2fs: fix to account dirty data in __get_secs_required()

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to account dirty data in getsecsrequired It will trigger system panic w/ testcase in 1: ------------ cut here ------------ kernel BUG at fs/f2fs/segment.c:2752! RIP: 0010:newcurseg+0xc81/0x2110 Call Trace:...