EUVD-2017-18796

Malware in sbrugna...

The vulnerability of the Linux operating system’s file system driver allows a hacker to execute arbitrary code.

The vulnerability of the Linux operating system’s file system driver is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability allows an attacker to execute arbitrary code by mounting a specially crafted version of the file system...

CVE-2024-45778 Grub2: fs/bfs: integer overflow in the bfs parser.

A stack overflow flaw was found when reading a BFS file system. A crafted BFS filesystem may lead to an uncontrolled loop, causing grub2 to crash...

Advisory ROSA-SA-2024-2453

Software: e2fsprogs 1.46.6 WASP: ROSA-CHROME packageevrstring: e2fsprogs-1.46.6-1 CVE-ID: CVE-2022-1304 BDU-ID: None CVE-Crit: HIGH CVE-DESC.: A read/write vulnerability outside the allocated area has been detected in e2fsprogs. This issue leads to a segmentation error and possible execution of...

The vulnerability of the F2fs-Tools tool, related to reading beyond the memory boundaries, allows a intruder to access confidential information.

The vulnerability of the F2fs-Tools tool is related to reading data beyond the memory boundaries. Exploiting this vulnerability can allow an attacker to access confidential information by causing a read error beyond the allowed range, thereby creating a specially crafted file system for F2fs...

The vulnerability of the F2fs-Tools utility, related to incorrect external manipulation of file names or file paths, allows a malicious user to delete any files they desire.

The vulnerability of the F2fs-Tools tool is related to improper external manipulation of the file name or file path. Exploiting this vulnerability allows an attacker to delete arbitrary files by creating a specially crafted file system called f2fs...

ntfs-3g: Out-of-bounds read ntfs_attr_find_in_attrdef() triggered by an invalid attribute

The ntfs3g package is susceptible to a heap overflow on crafted input. When processing an NTFS image, proper bounds checking was not enforced leading to this software flaw. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability...

Denial Of Service (DoS)

kernel is vulnerable to denial of service. Multiple flaws were found in the ext4 file system code. A local attacker could use these flaws to cause a denial of service by mounting a specially-crafted ext4 file system...

UBUNTU-CVE-2018-12929

ntfsreadlockedinode in the ntfs.ko filesystem driver in the Linux kernel 4.15.0 allows attackers to trigger a use-after-free read and possibly cause a denial of service kernel oops or panic via a crafted ntfs filesystem...

UBUNTU-CVE-2018-12930

ntfsendbufferasyncread in the ntfs.ko filesystem driver in the Linux kernel 4.15.0 allows attackers to trigger a stack-based out-of-bounds write and cause a denial of service kernel oops or panic or possibly have unspecified other impact via a crafted ntfs filesystem...

PT-2018-11490

Name of the Vulnerable Software and Affected Versions Linux kernel version 4.15.0 Description The issue is related to the ntfs attr find function in the ntfs.ko filesystem driver, which allows attackers to trigger a stack-based out-of-bounds write. This can cause a denial of service, resulting in...

libfsntfs information disclosure vulnerability (CNVD-2018-16521)

libfsntfs is a library for accessing the New Technology File System NTFS. An information disclosure vulnerability exists in the libfsntfsmftentryreadheader function in libfsntfsmftentry.c on 2018-04-20 and earlier. An attacker can exploit this vulnerability to obtain information via specially...

CVE-2009-0140

Unspecified vulnerability in the SMB component in Apple Mac OS X 10.4.11 and 10.5.6 allows remote SMB servers to cause a denial of service memory exhaustion and system shutdown via a crafted file system name...