Linux Kernel Inode Count Validation Vulnerability in ext2 File System

Vulnerability

A vulnerability in the Linux kernel's ext2 file system module has been addressed. This issue involved insufficient validity checks on inode counts, which could lead to crashes on corrupted file systems. The vulnerability allowed the number of inodes stored in the superblock to be misaligned with the number calculated from inodes per group. Additionally, the lack of verification that each group had at least one block's worth of inodes contributed to the problem.

Impact

The vulnerability could cause system crashes by triggering kernel panics when the file system is corrupted.

Added: Jun 18, 2025, 1:45 PM

Updated: Jun 18, 2025, 1:45 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

0.0

relevance

0.2

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

0.0

relevance

0.2

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel Inode Count Validation Vulnerability in ext2 File System

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating