logo
DATABASE RESOURCES PRICING ABOUT US

Low: libguestfs-winsupport

Description

**Issue Overview:** An integer underflow issue exists in ntfs-3g 2017.3.23. A local attacker could potentially exploit this by running /bin/ntfs-3g with specially crafted arguments from a specially crafted directory to cause a heap buffer overflow, resulting in a crash or the ability to execute arbitrary code. In installations where /bin/ntfs-3g is a setuid-root binary, this could lead to a local escalation of privileges. (CVE-2019-9755) **Affected Packages:** libguestfs-winsupport **Issue Correction:** Run _yum update libguestfs-winsupport_ to update your system. **New Packages:** aarch64:     libguestfs-winsupport-7.2-3.amzn2.aarch64 src:     libguestfs-winsupport-7.2-3.amzn2.src x86_64:     libguestfs-winsupport-7.2-3.amzn2.x86_64


Affected Package


OS OS Version Package Name Package Version
Amazon Linux 2 libguestfs-winsupport 7.2-3.amzn2
Amazon Linux 2 libguestfs-winsupport 7.2-3.amzn2
Amazon Linux 2 libguestfs-winsupport 7.2-3.amzn2

Related