Primary

Context

Linux Kernel F2FS Bug Handling Vulnerability

Vulnerability

Patched

A vulnerability in the Linux kernel's F2FS (Flash-Friendly File System) implementation has been identified. This issue arises in the 'f2fs_new_node_page' function, where a bug can trigger a 'BUG_ON()' assertion. The problem occurs when the NAT (Node Address Translation) entry for a node ID (nid) is free in the NAT bitmap, but the corresponding block address is not null. This inconsistency can lead to unexpected behavior, as one part of the system indicates the node is free while another part suggests it is still in use.

Impact

Exploitation of this vulnerability can cause the system to trigger a 'BUG_ON()' assertion, indicating a serious inconsistency or error that could disrupt normal operations.

Added: Jun 18, 2025, 8:11 PM

Updated: Jun 18, 2025, 8:11 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

7.7

relevance

0.2

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

7.7

relevance

0.2

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel F2FS Bug Handling Vulnerability

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating