Linux Kernel F2FS Infinite Loop Vulnerability in Node Page Flushing

Vulnerability

A vulnerability in the Linux kernel's F2FS (Flash-Friendly File System) implementation can lead to an infinite loop when flushing node pages. This issue arises because the F2FS test suite can consistently trigger an I/O error, causing the node page flushing process to loop indefinitely. The problem has been addressed by modifying the F2FS code to prevent this infinite loop scenario.

Impact

Exploitation of this vulnerability can cause a denial-of-service condition by creating an infinite loop in the F2FS node page flushing process, potentially leading to increased CPU usage and resource exhaustion.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel F2FS Infinite Loop Vulnerability in Node Page Flushing

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating