CVE-2021-44879: 
Linux Kernel vulnerability analysis and mitigation

CVE-2021-44879 is a vulnerability discovered in the Linux kernel's f2fs (Flash-Friendly File System) implementation before version 5.16.3. The vulnerability was discovered by Wenqing Liu and disclosed in December 2021. The issue exists in the gcdatasegment function in fs/f2fs/gc.c, where special files (character, block, fifo, or socket files) are not properly considered during garbage collection operations (Debian LTS, Ubuntu Security).

The vulnerability stems from a NULL pointer dereference issue in the f2fs implementation. For special files, f2fs doesn't assign address space operations pointer array for the mapping->aops field. When processing a crafted f2fs image where the SSA table indicates a data block belonging to a special file, the garbage collection process attempts to migrate that block, leading to a NULL pointer dereference when movedatapage() calls aops->setdirtypage() (Kernel Bugzilla).

An attacker who can mount a specially crafted f2fs image can exploit this vulnerability to cause a denial of service condition through a system crash. This affects systems running Linux kernel versions prior to 5.16.3 that have f2fs filesystem support enabled (Ubuntu Security).

The vulnerability was fixed in Linux kernel version 5.16.3 through a patch that adds proper sanity checking on inode types during garbage collection. The fix involves modifying the gcdatasegment function to check for special files before attempting to process them. Various Linux distributions have backported this fix to their supported kernel versions (Kernel Git).