SB20251230314 - Input validation error in Linux kernel f2fs
Published: December 30, 2025
Security Bulletin ID
SB20251230314
Severity
Low
Patch available
YES
Number of vulnerabilities
1
Exploitation vector
Local access
Highest impact
Denial of service
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 1 security vulnerability.
1) Input validation error (CVE-ID: CVE-2023-54187)
The vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper input validation within the f2fs_rename() function in fs/f2fs/namei.c. A local user can perform a denial of service (DoS) attack.
Remediation
Install update from vendor's website.
References
- https://git.kernel.org/stable/c/0a76082a4a32a90d1ef33dee8b400efc082b4b6f
- https://git.kernel.org/stable/c/3e77036246123ff710fa2661dcaa12a45284f09b
- https://git.kernel.org/stable/c/8a0b544b7caedfbc05065b6377fd1d8bf7ef5e70
- https://git.kernel.org/stable/c/8f57f3e112cf1d16682b6ff9c31c72f40f7da9c9
- https://git.kernel.org/stable/c/957904f531fd857a92743b11fbc9c9ffdf7f3207
- https://git.kernel.org/stable/c/d94772154e524b329a168678836745d2773a6e02
- https://git.kernel.org/stable/c/f20191100952013f0916418cdaed0ab55c7b634c
- https://mirrors.edge.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.2.16