CVE-2026-45935 fs/ntfs3: Fix slab-out-of-bounds read in DeleteIndexEntryRoot

🗓️ 27 May 2026 12:17:52Reported by LinuxType

Kernel fix for slab out-of-bounds read in ntfs three DeleteIndexEntryRoot by validating entry size against remaining space.

Reporter	Title	Published	Views	Family All 21
Tenable Nessus	Amazon Linux 2023 : bpftool6.18, kernel6.18, kernel6.18-devel (ALAS2023-2026-1514)	30 Mar 202600:00	–	nessus
Tenable Nessus	Amazon Linux 2023 : bpftool6.12, kernel6.12, kernel6.12-devel (ALAS2023-2026-1543)	7 Apr 202600:00	–	nessus
Tenable Nessus	Amazon Linux 2023 : bpftool, kernel, kernel-devel (ALAS2023-2026-1544)	7 Apr 202600:00	–	nessus
Tenable Nessus	Amazon Linux 2 : kernel, --advisory ALAS2KERNEL-5.15-2026-100 (ALASKERNEL-5.15-2026-100)	30 Apr 202600:00	–	nessus
Tenable Nessus	Linux Distros Unpatched Vulnerability : CVE-2026-45935	3 Jun 202600:00	–	nessus
Amazon	Important: kernel	30 Apr 202600:00	–	amazon
CNNVD	Linux kernel 安全漏洞	27 May 202600:00	–	cnnvd
CVE	CVE-2026-45935	27 May 202612:17	–	cve
Debian CVE	CVE-2026-45935	27 May 202612:17	–	debiancve
EUVD	EUVD-2026-32219	27 May 202615:33	–	euvd

[
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "unaffected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "fs/ntfs3/fslog.c"
    ],
    "versions": [
      {
        "version": "b46acd6a6a627d876898e1c84d3f84902264b445",
        "lessThan": "36c03f7f177b34d51f1cf1d2304b1074607bf4b0",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "b46acd6a6a627d876898e1c84d3f84902264b445",
        "lessThan": "b271c9cb85927210b1b799e55ee7f702d12b4336",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "b46acd6a6a627d876898e1c84d3f84902264b445",
        "lessThan": "a584b9d1059b29e97e17c919274e9adfb846f2a0",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "b46acd6a6a627d876898e1c84d3f84902264b445",
        "lessThan": "c065541b71b79874c83d418a9acd18ad5826339b",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "b46acd6a6a627d876898e1c84d3f84902264b445",
        "lessThan": "78942172d5bff4d4afed8674abc09cc560ce44a0",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "b46acd6a6a627d876898e1c84d3f84902264b445",
        "lessThan": "f3b437a4c3e022a1449658ae9f3dd34859894513",
        "status": "affected",
        "versionType": "git"
      },
      {
        "version": "b46acd6a6a627d876898e1c84d3f84902264b445",
        "lessThan": "b2bc7c44ed1779fc9eaab9a186db0f0d01439622",
        "status": "affected",
        "versionType": "git"
      }
    ]
  },
  {
    "product": "Linux",
    "vendor": "Linux",
    "defaultStatus": "affected",
    "repo": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git",
    "programFiles": [
      "fs/ntfs3/fslog.c"
    ],
    "versions": [
      {
        "version": "5.15",
        "status": "affected"
      },
      {
        "version": "0",
        "lessThan": "5.15",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "5.15.202",
        "lessThanOrEqual": "5.15.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.1.165",
        "lessThanOrEqual": "6.1.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.6.128",
        "lessThanOrEqual": "6.6.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.12.75",
        "lessThanOrEqual": "6.12.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.18.14",
        "lessThanOrEqual": "6.18.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "6.19.4",
        "lessThanOrEqual": "6.19.*",
        "status": "unaffected",
        "versionType": "semver"
      },
      {
        "version": "7.0",
        "lessThanOrEqual": "*",
        "status": "unaffected",
        "versionType": "original_commit_for_fix"
      }
    ]
  }
]

Source	Link
git	www.git.kernel.org/stable/c/b2bc7c44ed1779fc9eaab9a186db0f0d01439622
git	www.git.kernel.org/stable/c/f3b437a4c3e022a1449658ae9f3dd34859894513
git	www.git.kernel.org/stable/c/78942172d5bff4d4afed8674abc09cc560ce44a0
git	www.git.kernel.org/stable/c/a584b9d1059b29e97e17c919274e9adfb846f2a0
git	www.git.kernel.org/stable/c/b271c9cb85927210b1b799e55ee7f702d12b4336
git	www.git.kernel.org/stable/c/36c03f7f177b34d51f1cf1d2304b1074607bf4b0
git	www.git.kernel.org/stable/c/c065541b71b79874c83d418a9acd18ad5826339b

30 May 2026 10:46Current

CVSS 3.17.8

EPSS0.0016