CVE-2022-49428: 
Linux Debian vulnerability analysis and mitigation

CVE-2022-49428 is a vulnerability in the Linux kernel's F2FS (Flash-Friendly File System) that was discovered and reported by Wenqing Liu. The vulnerability was disclosed in February 2025 and affects the Linux kernel's handling of inline_dots inode in F2FS. The issue occurs when the filesystem attempts to recover dot dentries for special files (character, block, fifo, or socket files) that have the inline_dots flag set (Kernel Git).

The vulnerability stems from a NULL pointer dereference in the F2FS filesystem code. The issue occurs because F2FS doesn't assign address space operations pointer array (mapping->a_ops field) for special files. When processing a fuzzed image with inline_dots flag set on a special file, during the lookup() operation, the __recover_dot_dentries() function attempts to call a_ops->set_dirty_page() through f2fs_add_regular_entry(), resulting in a NULL pointer access (Kernel Git).

When exploited, this vulnerability can cause a kernel panic, potentially leading to system crashes and denial of service. The issue is triggered during normal filesystem operations such as listing directory contents or accessing file status information (Kernel Git).

The issue has been fixed in the Linux kernel through a patch that adds a sanity check on inline_dots inode. The fix includes verifying whether the inode is a directory before proceeding with dot dentries recovery operations. If a non-directory inode is detected with inline_dots flag, the system logs an error message and sets the filesystem for checking (Kernel Git).