Linux Kernel F2FS Filesystem Inconsistency Vulnerability

A vulnerability in the Linux kernel's F2FS (Flash-Friendly File System) has been identified, which causes an inconsistency between the Segment Information Table (SIT) and the Summary Area (SSA). This issue arises during the garbage collection process, where the SSA block data may not be up to date, leading to mismatched segment types being reported. The vulnerability was introduced in version 6.13.0-rc1 and can be reproduced by creating a null block device, formatting it with F2FS, and then using the 'fallocate' command to allocate a large file. This process triggers a critical error that stops the filesystem due to the detected inconsistency.

Impact

Exploitation of this vulnerability causes the F2FS filesystem to stop functioning, leading to potential data loss or corruption.

Reproduction

The vulnerability can be reproduced by creating a null block device and formatting it with the F2FS filesystem. After mounting the filesystem, a file can be created and a large amount of data can be allocated to it using the 'fallocate' command. This process will trigger the vulnerability by causing an inconsistency between the SSA and SIT, which the filesystem will detect and respond to by stopping all operations on the filesystem.

Remediation

Users can upgrade to a patched version of the Linux kernel where this vulnerability has been addressed.