19 matches found
CVE-2025-71267
In the Linux kernel, the following vulnerability has been resolved: fs: ntfs3: fix infinite loop triggered by zero-sized ATTRLIST We found an infinite loop bug in the ntfs3 file system that can lead to a Denial-of-Service DoS condition. A malformed NTFS image can cause an infinite loop when an...
EUVD-2025-34421
Use after free in Windows NTFS allows an unauthorized attacker to elevate privileges locally...
Microsoft Windows NTFS 缓冲区错误漏洞
Microsoft Windows NTFS is a file system from Microsoft USA that serves computer files. The file system has error warning, disk self-healing, and logging capabilities. A buffer error vulnerability exists in Microsoft Windows NTFS. The following products and editions are affected:Windows 10 Version...
AZL-53093 CVE-2024-50244 affecting package kernel for versions less than 6.6.64.2-1
In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Additional check in niclear Checking of NTFSFLAGSLOGREPLAYING added to prevent access to uninitialized bitmap during replay process...
CVE-2024-50244 fs/ntfs3: Additional check in ni_clear()
In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Additional check in niclear Checking of NTFSFLAGSLOGREPLAYING added to prevent access to uninitialized bitmap during replay process...
CVE-2023-4692 Grub2: out-of-bounds write at fs/ntfs.c may lead to unsigned code execution
An out-of-bounds write flaw was found in grub2's NTFS filesystem driver. This issue may allow an attacker to present a specially crafted NTFS filesystem image, leading to grub's heap metadata corruption. In some circumstances, the attack may also corrupt the UEFI firmware heap metadata. As a...
CVE-2023-29346
NTFS Elevation of Privilege Vulnerability...
ntfs-3g: heap-based buffer overflow in ntfsck
A vulnerability was found in NTFS-3G, specifically in the ntfsck utility. Incorrect validation of NTFS metadata can result in a heap-based buffer overflow when processing a crafted NTFS image file or partition...
PT-2022-36580 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v4.9.334 Description: The issue is related to an overflow when iterating ATTR RECORDs in ntfs. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel versions prior...
UBUNTU-CVE-2022-30789
A crafted NTFS image can cause a heap-based buffer overflow in ntfschecklogclientarray in NTFS-3G through 2021.8.22...
Tuxera NTFS-3G 代码注入漏洞
Tuxera NTFS-3G is an open-source, cross-platform set of drivers from Tuxera Finland for supporting read and write NTFS partitions.A code injection vulnerability exists in Tuxera NTFS-3G, which stems from the presence of an invalid return code in fusekernmount. No detailed vulnerability details ar...
A crafted NTFS image can cause an out-of-bounds read in ntfs_ie_lookup in NTFS-3G < 2021.8.22.
...
ntfs-3g: Heap buffer overflow in ntfs_compressed_pwrite()
The ntfs3g package is susceptible to a heap overflow on crafted input. When processing an NTFS image, proper bounds checking was not enforced leading to this software flaw. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability...
AZL-6767 CVE-2021-39262 affecting package ntfs-3g for versions less than 2021.8.22-1
A crafted NTFS image can cause an out-of-bounds access in ntfsdecompress in NTFS-3G 2021.8.22...
UBUNTU-CVE-2021-39253
A crafted NTFS image can cause an out-of-bounds read in ntfsrunlistsmergei in NTFS-3G 2021.8.22...
AZL-6748 CVE-2021-33285 affecting package ntfs-3g for versions less than 2021.8.22-1
In NTFS-3G versions 2021.8.22, when a specially crafted NTFS attribute is supplied to the function ntfsgetattributevalue, a heap buffer overflow can occur allowing for memory disclosure or denial of service. The vulnerability is caused by an out-of-bound buffer access which can be triggered by...
CVE-2021-39261
A crafted NTFS image can cause a heap-based buffer overflow in ntfscompressedpwrite in NTFS-3G 2021.8.22...
CVE-2021-27096
NTFS Elevation of Privilege Vulnerability...
Apple MAC OS X NTFS Memory Layout Disclosure Vulnerability
Apple Mac OS X is a commercial operating system. A security vulnerability exists in Apple Mac OS X NTFS that allows local attackers to exploit the vulnerability to run malicious applications to obtain kernel memory layout...