Linux Kernel F2FS Filesystem Compression Context Update Vulnerability

A vulnerability in the Linux kernel's F2FS (Flash-Friendly File System) implementation has been addressed. The issue was a divide-by-zero error that occurred when the compression context was improperly managed during the write-back process. This bug was reported by Bai Shuangpeng and was triggered by a race condition involving file synchronization and attribute setting operations on a non-compressed inode. The vulnerability affected Linux kernel versions prior to 6.17.0.

Impact

The vulnerability could lead to a divide-by-zero error, causing a crash or undefined behavior in the system.

Reproduction

The vulnerability can be reproduced by triggering a race condition between file synchronization and attribute modification operations on an F2FS inode that is not compressed. This can be done by simultaneously performing an fsync operation, modifying file attributes, and issuing an ioctl command that interacts with the file's compression settings. The race condition will cause the F2FS filesystem to attempt to divide by zero, leading to a crash.

Remediation

Users can upgrade to the latest version of the Linux kernel where this vulnerability has been fixed. Instructions for downloading the updated kernel can be found on the official Linux kernel website.