{"id":"CVE-2020-6104","details":"An exploitable information disclosure vulnerability exists in the get_dnode_of_data functionality of F2fs-Tools F2fs.Fsck 1.13. A specially crafted f2fs filesystem can cause information disclosure resulting in a information disclosure. An attacker can provide a malicious file to trigger this vulnerability.","modified":"2026-05-18T05:52:36.426099238Z","published":"2020-10-15T15:15:11.343Z","database_specific":{},"references":[{"type":"ADVISORY","url":"https://security.gentoo.org/glsa/202101-26"},{"type":"EVIDENCE","url":"https://talosintelligence.com/vulnerability_reports/TALOS-2020-1046"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://git.kernel.org/pub/scm/linux/kernel/git/jaegeuk/f2fs-tools.git","events":[{"introduced":"0"},{"fixed":"d41dcbdf46dc3841cd0a0507e6573e38cb6c55bb"}],"database_specific":{"cpe":"cpe:2.3:a:f2fs-tools_project:f2fs-tools:*:*:*:*:*:*:*:*","source":"CPE_FIELD","extracted_events":[{"introduced":"0"},{"fixed":"1.14.0"}]}}],"versions":["v1.13.0","v1.12.0","v1.11.0","v1.10.0","v1.9.0","v1.8.0","v1.7.0","v1.6.1","v1.6.0","v1.5.0","v1.4.1","v1.4.0","v1.3.0","v1.2.0","v1.1.0","v1.0.0"],"database_specific":{"source":"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2020-6104.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N"}]}