The Linux kernel's F2FS driver has a newly assigned CVE — CVE-2025-40333 — describing an edge-case bug that can put the filesystem into an infinite loop inside __insert_extent_tree when presented with malformed extent metadata. The upstream maintainers fixed the logic by failing early and...
