CVE-2022-49364

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A vulnerability in the Linux kernel has been resolved, specifically in the f2fs file system. The issue occurs when the f2fs evict inode() function is called, causing a dirty inode to not be properly cleared. This happens because the inode node and dnode node share the same nid, leading to the invalidation of the NAT entry during dnode node truncation. As a result, when truncating the inode node, the process fails due to the invalid NAT entry, causing the inode to remain marked as dirty. The estimated number of potentially affected devices worldwide is not available. There is no information about real-world incidents where this issue was exploited.

Recommendations To resolve this issue, update the Linux kernel to a version that includes the fix for the f2fs evict inode() function. At the moment, there is no information about a newer version that contains a fix for this vulnerability.