Vulnerability: NULL Pointer Dereference in f2fs_recover_fsync_data in Linux Kernel 5.0.21

Vulnerability: NULL Pointer Dereference in f2fs_recover_fsync_data in Linux Kernel 5.0.21

CVE-2019-19815 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

In the Linux kernel 5.0.21, mounting a crafted f2fs filesystem image can cause a NULL pointer dereference in f2fs_recover_fsync_data in fs/f2fs/recovery.c. This is related to F2FS_P_SB in fs/f2fs/f2fs.h.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.