Lucene search
Alpine Linux Development TeamALPINE:CVE-2021-33285HistorySep 07, 2021 - 2:15 p.m.
CVE-2021-33285
2021-09-0714:15:00
Alpine Linux Development Team
security.alpinelinux.org
8
EPSS
0.001
Percentile
21.0%
In NTFS-3G versions < 2021.8.22, when a specially crafted NTFS attribute is supplied to the function ntfs_get_attribute_value, a heap buffer overflow can occur allowing for memory disclosure or denial of service. The vulnerability is caused by an out-of-bound buffer access which can be triggered by mounting a crafted ntfs partition. The root cause is a missing consistency check after reading an MFT record : the “bytes_in_use” field should be less than the “bytes_allocated” field. When it is not, the parsing of the records proceeds into the wild.
Related
veracode
veracode
Denial Of Service
2021-09-07 20:27:35
nvd
nvd
CVE-2021-33285
2021-09-07 14:15:11
cbl_mariner
cbl_mariner
CVE-2021-33285 affecting package ntfs-3g for versions less than 2021.8.22-1
2022-04-26 19:57:41
debiancve
debiancve
CVE-2021-33285
2021-09-07 14:15:11
cvelist
cvelist
CVE-2021-33285
2021-09-07 00:00:00
redhatcve
redhatcve
CVE-2021-33285
2021-09-06 15:04:50
cnvd
cnvd
Tuxera NTFS-3G Buffer Overflow Vulnerability (CNVD-2021-72271)
2021-09-07 00:00:00
prion
prion
Heap overflow
2021-09-07 14:15:00
cve
cve
CVE-2021-33285
2021-09-07 14:15:11
ubuntucve
ubuntucve
CVE-2021-33285
2021-09-07 00:00:00
fedora
fedora
[SECURITY] Fedora 33 Update: ntfs-3g-2021.8.22-2.fc33
2021-09-23 19:30:16
[SECURITY] Fedora 35 Update: ntfs-3g-2021.8.22-2.fc35
2021-09-24 20:50:50
openvas
openvas
Fedora: Security Advisory for ntfs-3g (FEDORA-2021-e7c8ba6301)
2021-09-24 00:00:00
Huawei EulerOS: Security Advisory for ntfs-3g (EulerOS-SA-2021-2807)
2021-12-26 00:00:00
Fedora: Security Advisory for ntfs-3g (FEDORA-2021-5b1dac797b)
2021-10-02 00:00:00
nessus
nessus
EulerOS 2.0 SP8 : ntfs-3g (EulerOS-SA-2021-2807)
2021-12-25 00:00:00
openSUSE 15 Security Update : ntfs-3g_ntfsprogs (openSUSE-SU-2021:1244-1)
2021-09-10 00:00:00
suse
suse
Security update for ntfs-3g_ntfsprogs (important)
2021-09-09 00:00:00
Security update for ntfs-3g_ntfsprogs (important)
2021-09-07 00:00:00
osv
osv
mageia
mageia
Updated ntfs-3g packages fix security vulnerability
2022-01-03 10:36:40
debian
debian
[SECURITY] [DSA 4971-1] ntfs-3g security update
2021-09-09 19:15:24
[SECURITY] [DSA 4971-1] ntfs-3g security update
2021-09-09 19:15:24
[SECURITY] [DLA 2819-1] ntfs-3g security update
2021-11-16 22:56:32
slackware
slackware
[slackware-security] ntfs-3g
2021-08-31 21:01:05
altlinux
altlinux
Security fix for the ALT Linux 9 package ntfs-3g version 2:2021.8.22-alt1
2021-09-10 00:00:00
redhat
redhat
(RHSA-2021:3704) Moderate: virt:8.2 and virt-devel:8.2 security update
2021-09-30 18:28:50
gentoo
gentoo
NTFS-3G: Multiple Vulnerabilities
2023-01-11 00:00:00
almalinux
almalinux
rocky
rocky
virt:rhel and virt-devel:rhel security, bug fix, and enhancement update
2022-05-10 07:59:57
oraclelinux
oraclelinux
virt:ol and virt-devel:ol security, bug fix, and enhancement update
2022-05-17 00:00:00