CVE-2021-39259

A crafted NTFS image can trigger an out-of-bounds access, caused by an unsanitized attribute length in ntfsinodelookupbyname, in NTFS-3G 2021.8.22...

CVE-2021-39251

A crafted NTFS image can cause a NULL pointer dereference in ntfsextentinodeopen in NTFS-3G 2021.8.22...

CVE-2021-35268

In NTFS-3G versions 2021.8.22, when a specially crafted NTFS inode is loaded in the function ntfsinoderealopen, a heap buffer overflow can occur allowing for code execution and escalation of privileges...

Tuxera NTFS-3G 缓冲区错误漏洞

Tuxera NTFS-3G is Finland's Tuxera company's set of open source , cross-platform for supporting NTFS partition read and write drivers . NTFS-3G suffers from a buffer overflow vulnerability that can be exploited by an attacker to cause a heap-based buffer overflow in ntfsinodelookupbyname in NTFS-...

Tuxera NTFS-3G 代码问题漏洞

NTFS-3G is a stable, full-featured, read/write NTFS driver for Linux, Android, Mac OS X, FreeBSD, NetBSD, OpenSolaris, QNX, Haiku, and other operating systems. ntfs extentinodeopen is vulnerable to a null pointer dereference. An attacker could exploit the vulnerability to cause null pointer...

PT-2021-5770 · Ntfs-3G +7 · Ntfs-3G +7

Name of the Vulnerable Software and Affected Versions: NTFS-3G versions prior to 2021.8.22 Description: The issue is related to a heap buffer overflow in the ntfs inode real open function of the NTFS-3G file system driver. This can allow an attacker to access confidential data, compromise data...

PT-2021-5782 · Ntfs-3G +7 · Ntfs-3G +7

Name of the Vulnerable Software and Affected Versions: NTFS-3G versions prior to 2021.8.22 Description: The issue is related to a heap buffer overflow that can occur when a specially crafted NTFS inode pathname is supplied in an NTFS image. This can result in memory disclosure, denial of service,...

PT-2021-5777 · Ntfs-3G +7 · Ntfs-3G +7

Name of the Vulnerable Software and Affected Versions: NTFS-3G versions prior to 2021.8.22 Description: The issue is related to a heap-based buffer overflow in the ntfs inode lookup by name function of the NTFS-3G driver. This can be triggered by a crafted NTFS image, potentially allowing an...

PT-2021-5753 · Ntfs-3G +7 · Ntfs-3G +7

Name of the Vulnerable Software and Affected Versions: NTFS-3G versions prior to 2021.8.22 Description: The issue is related to a NULL pointer dereference in the ntfs extent inode open function of the NTFS-3G driver for the FUSE module. This can be exploited by a crafted NTFS image, potentially...

GSD-2021-1000744 btrfs: fixup error handling in fixup_inode_link_counts

btrfs: fixup error handling in fixupinodelinkcounts This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.19.194 by commit...

GSD-2021-1000719 btrfs: fixup error handling in fixup_inode_link_counts

btrfs: fixup error handling in fixupinodelinkcounts This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.4.272 by commit...

SUSE: Security Advisory (SUSE-SU-2019:0224-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

PT-2024-11166 · Linux +3 · Linux Kernel +3

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to data corruption caused by the fallocate function in the Linux kernel. When fallocate punches holes out of inode size and the original isize is in the middle of...

GSD-2021-1000216 ceph: fix inode leak on getattr error in __fh_to_dentry

ceph: fix inode leak on getattr error in fhtodentry This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.12.5 by commit...

GSD-2021-1000333 ceph: fix inode leak on getattr error in __fh_to_dentry

ceph: fix inode leak on getattr error in fhtodentry This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.38 by commit...

UVI-2021-1000415 ceph: fix inode leak on getattr error in __fh_to_dentry

ceph: fix inode leak on getattr error in fhtodentry This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.120 by commit...

GSD-2021-1000415 ceph: fix inode leak on getattr error in __fh_to_dentry

ceph: fix inode leak on getattr error in fhtodentry This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.4.120 by commit...

GSD-2021-1000062 ext4: fix check to prevent false positive report of incorrect used inodes

ext4: fix check to prevent false positive report of incorrect used inodes This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.12.3 by commit...

PT-2024-11150 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The vulnerability is related to the btrfs file system in the Linux kernel. When an inode is moved from one directory to another and both the inode and its previous parent directory wer...

PT-2024-11094 · Linux +1 · Linux Kernel +1

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to a deadlock that occurs when cloning inline extents and using qgroups in the btrfs file system. This happens because when reserving metadata space for a...