CVE-2022-50013
- Source
- https://cve.org/CVERecord?id=CVE-2022-50013
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-50013.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2022-50013
- Downstream
- Published
- 2025-06-18T11:01:17.771Z
- Modified
- 2026-04-02T08:28:09.173395Z
- Summary
- f2fs: fix to avoid use f2fs_bug_on() in f2fs_new_node_page()
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
f2fs: fix to avoid use f2fsbugon() in f2fsnewnode_page()
As Dipanjan Das mail.dipanjan.das@gmail.com reported, syzkaller found a f2fs bug as below:
RIP: 0010:f2fsnewnodepage+0x19ac/0x1fc0 fs/f2fs/node.c:1295 Call Trace: writeall_xattrs fs/f2fs/xattr.c:487 [inline] __f2fssetxattr+0xe76/0x2e10 fs/f2fs/xattr.c:743 f2fssetxattr+0x233/0xab0 fs/f2fs/xattr.c:790 f2fsxattrgeneric_set+0x133/0x170 fs/f2fs/xattr.c:86 __vfs_setxattr+0x115/0x180 fs/xattr.c:182 __vfssetxattrnoperm+0x125/0x5f0 fs/xattr.c:216 __vfssetxattrlocked+0x1cf/0x260 fs/xattr.c:277 vfssetxattr+0x13f/0x330 fs/xattr.c:303 setxattr+0x146/0x160 fs/xattr.c:611 pathsetxattr+0x1a7/0x1d0 fs/xattr.c:630 __dosyslsetxattr fs/xattr.c:653 [inline] __sesyslsetxattr fs/xattr.c:649 [inline] __x64syslsetxattr+0xbd/0x150 fs/xattr.c:649 dosyscallx64 arch/x86/entry/common.c:50 [inline] dosyscall64+0x35/0xb0 arch/x86/entry/common.c:80 entrySYSCALL64afterhwframe+0x46/0xb0
NAT entry and nat bitmap can be inconsistent, e.g. one nid is free in nat bitmap, and blkaddr in its NAT entry is not NULLADDR, it may trigger BUGON() in f2fsnewnode_page(), fix it.
- Database specific
{ "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/50xxx/CVE-2022-50013.json", "cna_assigner": "Linux" }- References
-
- https://git.kernel.org/stable/c/141170b759e03958f296033bb7001be62d1d363b
- https://git.kernel.org/stable/c/29e734ec33ae4bd7de4018fb0fb0eec808c36b92
- https://git.kernel.org/stable/c/43ce0a0bda2c54dad91d5a1943554eed9e050f55
- https://git.kernel.org/stable/c/5a01e45b925a0bc9718eccd33e5920f1a4e44caf
- https://git.kernel.org/stable/c/800ba8979111184d5194f4233cc83afe683efc54
- https://git.kernel.org/stable/c/fbfad62b29e9f8f1c1026a806c9e064ec2a7c342
- https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/50xxx/CVE-2022-50013.json
- https://nvd.nist.gov/vuln/detail/CVE-2022-50013
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced98e4da8ca301e062d79ae168c67e56f3c3de3ce4Fixedfbfad62b29e9f8f1c1026a806c9e064ec2a7c342Fixed29e734ec33ae4bd7de4018fb0fb0eec808c36b92Fixed800ba8979111184d5194f4233cc83afe683efc54Fixed5a01e45b925a0bc9718eccd33e5920f1a4e44cafFixed43ce0a0bda2c54dad91d5a1943554eed9e050f55Fixed141170b759e03958f296033bb7001be62d1d363b