Astra Linux - уязвимость в ntfs-3g

In NTFS-3G versions before version 2021.8.22, when a specially crafted Unicode string is provided in an NTFS image, a heap buffer overflow may occur, allowing code execution...

Astra Linux - уязвимость в ntfs-3g

A properly crafted NTFS image can lead to a out-of-bounds read in ntfsrunlistsmergei in NTFS-3G 2021.8.22...

Debian dla-4544 : libntfs-3g883 - security update

The remote Debian 11 host has packages installed that are affected by a vulnerability as referenced in the dla-4544 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-4544-1 [email protected] https://www.debian.org/lts/security/...

EUVD-2021-25622

Malware in sbrugna...

EUVD-2021-21911

Malware in sbrugna...

EUVD-2021-19996

Malware in sbrugna...

EUVD-2021-21909

Malware in sbrugna...

EUVD-2021-21912

Malware in sbrugna...

EUVD-2021-20000

Malware in sbrugna...

EUVD-2021-25613

Malware in sbrugna...

EUVD-2022-52607

Malicious code in bioql PyPI...

TencentOS Server 4: ntfs-3g (TSSA-2024:1019)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2024:1019 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...

CVE-2007-5159

The ntfs-3g package before 1.913-2.fc7 in Fedora 7, and an ntfs-3g package in Ubuntu 7.10/Gutsy, assign incorrect permissions setuid root to mount.ntfs-3g, which allows local users with fuse group membership to read from and write to arbitrary block devices, possibly involving a file descriptor...

Fedora 37 : ntfs-3g (2022-243616c548)

The remote Fedora 37 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2022-243616c548 advisory. Update to 2022.10.3. Fixes CVE-2022-40284 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus...

Low: Red Hat Security Advisory: virt:av and virt-devel:av security update

An update for the virt:av and virt-devel:av modules is now available for Advanced Virtualization for RHEL 8.4.0.EUS. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

SUSE CVE-2021-39251

A crafted NTFS image can cause a NULL pointer dereference in ntfsextentinodeopen in NTFS-3G 2021.8.22...

CVE-2022-40284

A buffer overflow was discovered in NTFS-3G before 2022.10.3. Crafted metadata in an NTFS image can cause code execution. A local attacker can exploit this if the ntfs-3g binary is setuid root. A physically proximate attacker can exploit this if NTFS-3G software is configured to execute upon...

ASB-A-231275475

In Modem 2G/3G CC, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution when decoding combined FACILITY with no additional execution privileges needed. User interaction is not needed for exploitation...

Denial Of Service (DoS)

ntfs-3g is vulnerable to denial of service. The vulnerability exists due to a heap-based buffer overflow involving buffer+5123-2 allowing an attacker to crash the system...

UBUNTU-CVE-2022-30785

A file handle created in fuselibopendir, and later used in fuselibreaddir, enables arbitrary memory read and write operations in NTFS-3G through 2021.8.22 when using libfuse-lite...