Impact
In the f2fs filesystem, the garbage‑collection routine may attempt to read a page that has already been moved and marked as up‑to‑date, causing a VM_BUG_ON trigger. This results in a kernel BUG and a panic, bringing the system down. The flaw arises from mishandling page state during GC, which is triggered when the garbage collection path processes a file marked for compaction.
Affected Systems
All Linux kernel releases that contain the f2fs module and that do not yet include commit 9bf1a3f are affected. No specific version range is explicitly listed in the advisory.
Risk and Exploitability
EPSS score indicates a probability of less than 1% and the vulnerability is not listed in the CISA KEV catalog. The bug can cause an immediate kernel crash, resulting in a denial of service. Based on the description, the likely attack vector is a local privileged user triggering garbage collection to activate the crash. Because the flaw is in kernel space, exploitation would require reaching kernel privilege levels, but the lack of a publicly available exploit does not preclude deterministic crash from misuse of the affected filesystem.
OpenCVE Enrichment