CVE-2020-6106

Summary

An exploitable information disclosure vulnerability exists in the init_node_manager functionality of F2fs-Tools F2fs.Fsck 1.12 and 1.13. A specially crafted filesystem can be used to disclose information. An attacker can provide a malicious file to trigger this vulnerability.

Affected Software

VendorProductVersion RangeStatus
n/aF2fs-ToolsF2fs-Tools F2fs.Fsck 1.12, F2fs-Tools F2fs.Fsck 1.13affected

Weaknesses

  • CWE-131: CWE-131: Incorrect Calculation of Buffer Size

ADP Enrichment

CVE Program Container

Additional References

References