Bugzilla – Bug 1150028
VUL-1: CVE-2019-9453: kernel-source: F2FS touch driver has a possible out of bounds read due to improper input validation
Last modified: 2019-11-20 16:13:33 UTC
In the Android kernel in F2FS touch driver there is a possible out of bounds
read due to improper input validation. This could lead to local information
disclosure with system execution privileges needed. User interaction is not
needed for exploitation.
We disable f2fs on all branches explicitly, so unaffected.
Reassigned back to security team.
Issue does not affect SUSE or openSUSE.