Linux Kernel F2FS Filesystem Data Block Allocation Vulnerability

Vulnerability

A vulnerability in the Linux kernel's F2FS (Flash-Friendly File System) has been identified, related to improper sanity checks on total data blocks. This issue arises when the checkpoint's valid block count does not align with the Segment Information Table (SIT), leading to a kernel panic during garbage collection. The F2FS allocator fails to find free segments, causing the system to crash. The vulnerability has been addressed by implementing a consistency check between the checkpoint's valid block count and the blocks accounted for in the SIT.

Impact

Exploitation of this vulnerability leads to a kernel panic, causing a system crash.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

7.7

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

7.7

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel F2FS Filesystem Data Block Allocation Vulnerability

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating