Description

In the Linux kernel, the following vulnerability has been resolved: f2fs: remove WARN_ON in f2fs_is_valid_blkaddr Syzbot triggers two WARNs in f2fs_is_valid_blkaddr and __is_bitmap_valid. For example, in f2fs_is_valid_blkaddr, if type is DATA_GENERIC_ENHANCE or DATA_GENERIC_ENHANCE_READ, it invokes WARN_ON if blkaddr is not in the right range. The call trace is as follows: f2fs_get_node_info+0x45f/0x1070 read_node_page+0x577/0x1190 __get_node_page.part.0+0x9e/0x10e0 __get_node_page f2fs_get_node_page+0x109/0x180 do_read_inode f2fs_iget+0x2a5/0x58b0 f2fs_fill_super+0x3b39/0x7ca0 Fix these two WARNs by replacing WARN_ON with dump_stack.

INFO

Published Date :

2025-02-26T02:10:44.557Z

Last Modified :

2025-10-01T19:46:56.972Z

Source :

Linux
AFFECTED PRODUCTS

The following products are affected by CVE-2022-49318 vulnerability.

Vendors Products
Linux
  • Linux Kernel
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2022-49318.

URL Resource
https://git.kernel.org/stable/c/0a7a1fc7e71eecf2e5053a6c312c9f0dcbb9b8fd cve-icon cve-icon
https://git.kernel.org/stable/c/32bea51fe4c6e92c00403739f7547c89219bea88 cve-icon cve-icon
https://git.kernel.org/stable/c/8c62c5e26345c34d199b4b8c8e69255ba3d0e751 cve-icon cve-icon
https://git.kernel.org/stable/c/99c09b298e47ebbe345a6da9f268b32a6b0f4582 cve-icon cve-icon
https://git.kernel.org/stable/c/cd6374af36cc548464d8c47a93fdba7303bb82a4 cve-icon cve-icon
https://git.kernel.org/stable/c/dc2f78e2d4cc844a1458653d57ce1b54d4a29f21 cve-icon cve-icon
https://lore.kernel.org/linux-cve-announce/2025022637-CVE-2022-49318-732e@gregkh/T cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2022-49318 cve-icon
https://www.cve.org/CVERecord?id=CVE-2022-49318 cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact