NILFS utilities through 2.3.0, fixed in commit 26efb5d, nilfssbisvalid() function fails to validate slogblocksize field in NILFS2 superblock before bit-shift operations. Attackers supplying crafted NILFS2 images trigger undefined behavior through oversized shifts or out-of-memory conditions, crashing tools like nilfs-tune and dumpseg.
{
"osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2026/55xxx/CVE-2026-55392.json",
"cna_assigner": "VulnCheck",
"cwe_ids": [
"CWE-1284"
]
}