PT-2025-25983 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 5.18.0-rc3-syzkaller-00016-gb253435746d9 Description: A NULL pointer dereference issue has been identified in the Linux kernel, specifically in the fs/ntfs3 component. This issue occurs when the ntfs fill super...

CVE-2021-47660

CVE-2021-47660 is addressed by a Linux kernel fix in the ntfs3 filesystem code. The patch resolves memory leaks in an error-handling path of log_replay(), ensuring that on all error paths the allocated resources are released via the existing out path instead of leaking through returns. The descri...

PT-2025-20335

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to the fixed version Description A NULL pointer dereference issue has been identified in the Linux kernel, specifically in the fs/ntfs3 module. This issue occurs when a user executes an ioctl command to clear the...

CVE-2024-50245

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Fix possible deadlock in miread Mutex lock with another subclass used in nilockdir...

CVE-2024-50244

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Additional check in niclear Checking of NTFSFLAGSLOGREPLAYING added to prevent access to uninitialized bitmap during replay process...

CVE-2024-50242

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Additional check in ntfsfilerelease...

CVE-2024-50247 fs/ntfs3: Check if more than chunk-size bytes are written

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Check if more than chunk-size bytes are written A incorrectly formatted chunk may decompress into more than LZNTCHUNKSIZE bytes and a index out of bounds will occur in smaxoff...

CVE-2024-50247

CVE-2024-50247 affects the Linux kernel ntfs3 path where an incorrectly formatted chunk may decompress to more than LZNT_CHUNK_SIZE bytes, causing an index out of bounds in s_max_off. The Connected documents confirm this CVE is included in multiple advisories (e.g., ALAS2023LIVEPATCH advisories) ...

CVE-2024-50245 fs/ntfs3: Fix possible deadlock in mi_read

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Fix possible deadlock in miread Mutex lock with another subclass used in nilockdir...

CVE-2024-50245

CVE-2024-50245 affects the Linux kernel fs/ntfs3 subsystem and is resolved by a patch that fixes a possible deadlock in mi_read caused by a mutex lock contention with the ni_lock_dir path. The flaw is within the ntfs3 code path and can result in a stall if the lock ordering interacts with another...

CVE-2024-50245

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Fix possible deadlock in miread Mutex lock with another subclass used in nilockdir...

CVE-2024-50244

CVE-2024-50244 affects the Linux kernel ntfs3 driver. Root cause: an additional check added in ni_clear() to validate NTFS_FLAGS_LOG_REPLAYING, preventing access to an uninitialized bitmap during the NTFS replay process. Impact: as described, availability is affected; other confidentiality/integr...

CVE-2024-50243 fs/ntfs3: Fix general protection fault in run_is_mapped_full

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Fix general protection fault in runismappedfull Fixed deleating of a non-resident attribute in ntfscreateinode rollback...

CVE-2024-50242 fs/ntfs3: Additional check in ntfs_file_release

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Additional check in ntfsfilerelease...

CVE-2024-42299

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Update log-pagemask,bits if log-pagesize changed If an NTFS file system is mounted to another system with different PAGESIZE from the original system, log-pagesize will change in logreplay, but log-pagemask,bits don't...

CVE-2024-42299

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Update log-pagemask,bits if log-pagesize changed If an NTFS file system is mounted to another system with different PAGESIZE from the original system, log-pagesize will change in logreplay, but log-pagemask,bits don't...

CVE-2024-41018

A vulnerability was found in the NTFS3 filesystem driver of the Linux kernel. This issue allows for out-of-bounds access due to insufficient checking of ATTRNAMEENTRY structures, and could lead to crashes or unauthorized access to kernel memory. Mitigation Mitigation for this issue is either not...

CVE-2024-41019

A flaw was found in the fs/ntfs3 module in the Linux kernel. This issue involved inadequate validation of the ff offset, which could lead to out-of-bounds reads if the offset was excessively large. This flaw posed risks of crashes and information leaks, and has been addressed by adding sanity...

CVE-2024-41018

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Add a check for attrnames and oatbl Added out-of-bound checking for ane ATTRNAMEENTRY...

CVE-2024-41019

CVE-2024-41019 affects the Linux kernel component fs/ntfs3. The issue arises from insufficient validation when traversing the ff offset, where an initial check is performed on rt->first_free but subsequent walking by ff occurs without a bound check. This can lead to an out-of-bounds read if a ...