CVE-2020-36775

MEDIUM

Linux Kernel < 5.4.189 - Denial of Service via Improper Locking in f2fs_write_compressed_pages

Title source: llm

Description

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid potential deadlock Using f2fs_trylock_op() in f2fs_write_compressed_pages() to avoid potential deadlock like we did in f2fs_write_single_data_page().

References (3)

Core 3

Core References

Patch

https://git.kernel.org/stable/c/0478ccdc8ea016de1ebaf6fe6da0275c2b258c5b

Patch

https://git.kernel.org/stable/c/8e8542437bb4070423c9754d5ba270ffdbae8c8d

Patch

https://git.kernel.org/stable/c/df77fbd8c5b222c680444801ffd20e8bbc90a56e

Scores

CVSS v3 5.5

EPSS 0.0017

EPSS Percentile 6.6%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-667

Status published

Products (7)

Linux/Linux < 5.6

Linux/Linux 4c8ff7095bef64fc47e996a938f7d57f9e077da3 - 8e8542437bb4070423c9754d5ba270ffdbae8c8d

Linux/Linux 4c8ff7095bef64fc47e996a938f7d57f9e077da3 - df77fbd8c5b222c680444801ffd20e8bbc90a56e

Linux/Linux 5.6

Linux/Linux 5.6.7 - 5.6.*

Linux/Linux 5.7

linux/linux_kernel < 5.4.189

Published Feb 26, 2024

Tracked Since Feb 18, 2026