CVE-2026-23265

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description The Linux kernel contains a flaw within the f2fs file system related to the handling of node footers during read and write operations. Specifically, the issue arises when a corrupted node page is loaded asynchronously without proper sanity checks on the node footer. This can lead to a kernel bug when the node page is written back, potentially causing system instability. The issue is triggered when there is an inconsistency between the node page index (nid) and the footer's nid. The vulnerability occurs when loading corrupted node pages using asynchronous methods like f2fs ra node pages() or f2fs ra node page().

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.