Chenyuwen

**Name of the Vulnerable Software and Affected Versions** Linux kernel (affected versions not specified) **Description** The issue is related to a bug in the f2fs file system, where the `inode.i crypt info` is not initialized during the mount process, leading to a kernel NULL pointer dereference. This occurs when the `f2fs truncate` function is called without proper initialization of `inode.i crypt info`. The bug is fixed by relocating the truncation of preallocated blocks to `f2fs file open()`, after `fscrypt file open()`. The vulnerability is caused by the lack of initialization of `inode.i crypt info` during the path: mount, `f2fs fill super`, `f2fs disable checkpoint`, `f2fs gc`, `f2fs iget`, and `f2fs truncate`. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.