Linux Kernel F2FS NULL Pointer Dereference Vulnerability

A NULL pointer dereference vulnerability has been identified in the Linux kernel's F2FS (Flash-Friendly File System) implementation. This issue arises in the error handling path of the function 'f2fs_start_discard_thread', where the discard thread is not properly invalidated if an error occurs. As a result, the kernel thread stop function may attempt to access an invalid pointer, leading to a crash.

Impact

Exploitation of this vulnerability causes a kernel crash due to a NULL pointer dereference, disrupting system operations and potentially leading to a denial of service.

Reproduction

The vulnerability can be reproduced by triggering the F2FS discard thread function in a scenario where the underlying device does not support real-time discard. This will cause the function to encounter an error, which is not properly handled, leaving a dangling pointer that can be accessed later, leading to a crash.

Remediation

Users can upgrade to the latest stable version of the Linux kernel, where this vulnerability has been addressed. Instructions for downloading the latest version can be found on the official Linux kernel website.