Linux Kernel F2FS Filesystem Memory Corruption Vulnerability in I/O Statistics Latency Update

A vulnerability in the Linux kernel's F2FS (Flash-Friendly File System) implementation can lead to memory corruption. This issue arises in the function responsible for updating I/O statistics latency. The vulnerability is present in several versions of the Linux kernel. The problem was caused by a mix-up between different page types, which allowed for a buffer overflow. The vulnerability has been addressed by adding a sanity check for the I/O type, preventing the potential memory corruption.

Impact

The vulnerability can cause memory corruption, which may lead to undefined behavior, including potential exploitation by an attacker.

Reproduction

The vulnerability can be reproduced by triggering the `__update_iostat_latency` function with an invalid I/O type that exceeds the expected range. This can be done by manipulating the I/O statistics context to introduce a peak latency type that is out of bounds, causing the function to overwrite memory incorrectly.

Remediation

Users can upgrade to the latest version of the Linux kernel where this vulnerability has been fixed. Instructions for upgrading the Linux kernel can be found in the official Linux kernel documentation.