SecPod SCAP Repo, a repository of SCAP Content (CVE, CCE, CPE, CWE, OVAL and XCCDF)

Download | Alert*

CVE

CVE-2023-2898

There is a null-pointer-dereference flaw found in f2fs_write_end_io in fs/f2fs/data.c in the Linux kernel. This flaw allows a local privileged user to cause a denial of service problem.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V3 Severity:		CVSS V2 Severity:
CVSS Score : 4.7		CVSS Score :
Exploit Score: 1.0		Exploit Score:
Impact Score: 3.6		Impact Score:

CVSS V3 Metrics:		CVSS V2 Metrics:
Attack Vector: LOCAL		Access Vector:
Attack Complexity: HIGH		Access Complexity:
Privileges Required: LOW		Authentication:
User Interaction: NONE		Confidentiality:
Scope: UNCHANGED		Integrity:
Confidentiality: NONE		Availability:
Integrity: NONE
Availability: HIGH

Reference:

DSA-5480

DSA-5492

https://lists.debian.org/debian-lts-announce/2023/10/msg00027.html

https://lore.kernel.org/linux-f2fs-devel/20230522124203.3838360-1-chao%40kernel.org/

https://security.netapp.com/advisory/ntap-20230929-0002/


30481



423868



255861



909



199025



282