Fedora Local Security Checks : Fedora: Security Advisory for f2fs-tools (FEDORA-2020-a0b24e9377)

Búsqueda de Vulnerabilidad		Buscar 219043 Descripciones CVE y 99761 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.878375

Categoría: Fedora Local Security Checks

Título: Fedora: Security Advisory for f2fs-tools (FEDORA-2020-a0b24e9377)

Resumen: The remote host is missing an update for the 'f2fs-tools'; package(s) announced via the FEDORA-2020-a0b24e9377 advisory.

Descripción: Summary:
The remote host is missing an update for the 'f2fs-tools'
package(s) announced via the FEDORA-2020-a0b24e9377 advisory.

Vulnerability Insight:
NAND flash memory-based storage devices, such as SSD, and SD cards,
have been widely being used for ranging from mobile to server systems.
Since they are known to have different characteristics from the
conventional rotational disks, a file system, an upper layer to
the storage device, should adapt to the changes
from the sketch.

F2FS is a new file system carefully designed for the
NAND flash memory-based storage devices.
We chose a log structure file system approach,
but we tried to adapt it to the new form of storage.
Also we remedy some known issues of the very old log
structured file system, such as snowball effect
of wandering tree and high cleaning overhead.

Because a NAND-based storage device shows different characteristics
according to its internal geometry or flash memory management
scheme aka FTL, we add various parameters not only for configuring
on-disk layout, but also for selecting allocation
and cleaning algorithms.

Affected Software/OS:
'f2fs-tools' package(s) on Fedora 33.

Solution:
Please install the updated package(s).

CVSS Score:
6.8

CVSS Vector:
AV:N/AC:M/Au:N/C:P/I:P/A:P

Referencia Cruzada: Common Vulnerability Exposure (CVE) ID: CVE-2020-6070
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3SZ4HMQKNI35NBWJI6XMJBGWPEKZRR72/
https://talosintelligence.com/vulnerability_reports/TALOS-2020-0988

Copyright Copyright (C) 2020 Greenbone Networks GmbH

Esta es sólo una de 99761 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.878375
Categoría:	Fedora Local Security Checks
Título:	Fedora: Security Advisory for f2fs-tools (FEDORA-2020-a0b24e9377)
Resumen:	The remote host is missing an update for the 'f2fs-tools'; package(s) announced via the FEDORA-2020-a0b24e9377 advisory.
Descripción:	Summary: The remote host is missing an update for the 'f2fs-tools' package(s) announced via the FEDORA-2020-a0b24e9377 advisory. Vulnerability Insight: NAND flash memory-based storage devices, such as SSD, and SD cards, have been widely being used for ranging from mobile to server systems. Since they are known to have different characteristics from the conventional rotational disks, a file system, an upper layer to the storage device, should adapt to the changes from the sketch. F2FS is a new file system carefully designed for the NAND flash memory-based storage devices. We chose a log structure file system approach, but we tried to adapt it to the new form of storage. Also we remedy some known issues of the very old log structured file system, such as snowball effect of wandering tree and high cleaning overhead. Because a NAND-based storage device shows different characteristics according to its internal geometry or flash memory management scheme aka FTL, we add various parameters not only for configuring on-disk layout, but also for selecting allocation and cleaning algorithms. Affected Software/OS: 'f2fs-tools' package(s) on Fedora 33. Solution: Please install the updated package(s). CVSS Score: 6.8 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2020-6070 https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3SZ4HMQKNI35NBWJI6XMJBGWPEKZRR72/ https://talosintelligence.com/vulnerability_reports/TALOS-2020-0988
Copyright	Copyright (C) 2020 Greenbone Networks GmbH