CVE-2020-6070

Summary

An exploitable code execution vulnerability exists in the file system checking functionality of fsck.f2fs 1.12.0. A specially crafted f2fs file can cause a logic flaw and out-of-bounds heap operations, resulting in code execution. An attacker can provide a malicious file to trigger this vulnerability.

Affected Software

VendorProductVersion RangeStatus
n/aF2fs-toolsF2fs-tools-1.12.0affected

Weaknesses

  • code execution

ADP Enrichment

CVE Program Container

Additional References

References