Name of the Vulnerable Software and Affected Versions Linux Kernel versions prior to v4.14.260

Description The issue concerns a problem in the f2fs setxattr() function where it fails to perform a sanity check on the last xattr entry. This could potentially lead to security vulnerabilities, although the actual impact and attack plausibility have not yet been proven.

Recommendations For Linux Kernel versions prior to v4.14.260, update to version v4.14.260 or later to resolve the issue. As a temporary workaround, consider restricting the use of the f2fs setxattr() function until a patch is available.