Linux Kernel F2FS Filesystem Reference Count Leak Vulnerability

A vulnerability in the Linux kernel's F2FS (Flash-Friendly File System) implementation can lead to a reference count leak during the unmount process. This issue, which has been observed in Linux kernel versions through 6.17.0-rc5, can cause a kernel crash due to an invalid opcode error. The problem arises because the function 'f2fs_put_super()' may be called before all node page reads are finished, creating a reference count leak that the system detects as an error.

Impact

This vulnerability can cause a kernel panic, leading to a system crash. The panic is triggered by a 'BUG' condition in the F2FS superblock management code, where the reference count leak is detected.

Reproduction

The vulnerability can be reproduced using the Xfstests file system test suite, specifically tests generic/335 and generic/336. These tests can trigger the reference count leak by unmounting a F2FS filesystem that has not completed all node page reads.

Remediation

Users can upgrade to the latest stable version of the Linux kernel, where this vulnerability has been addressed. Instructions for downloading the latest kernel version can be found on the official Linux kernel website.