Fedora: Security Advisory for ntfs-3g-system-compression (FEDORA-2022-1176b501f0)

The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

[SECURITY] Fedora 35 Update: ntfs-3g-system-compression-1.0-9.fc35

System compression, also known as "Compact OS", is a Windows feature that allows rarely modified files to be compressed using the XPRESS or LZX compression formats. It is not built directly into NTFS but rather is implemented using reparse points. This feature appeared in Windows 10 and it appear...

[SECURITY] Fedora 36 Update: ntfs-3g-system-compression-1.0-9.fc36

System compression, also known as "Compact OS", is a Windows feature that allows rarely modified files to be compressed using the XPRESS or LZX compression formats. It is not built directly into NTFS but rather is implemented using reparse points. This feature appeared in Windows 10 and it appear...

The vulnerability of the `ntfs inode_sync_standard_information` function in the NTFS file system driver for the FUSE NTFS-3G module, related to writing beyond the buffer’s memory limit, allows a malicious actor to access confidential data, compromise its integrity, and cause service failures.

The vulnerability of the ntfs inodesyncstandardinformation function in the NTFS file system driver for the FUSE NTFS-3G module is related to writing beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to access confidential data, compromise its integrity, a...

The vulnerability of the `ntfsattr_find_inattrdef` function in the NTFS file system driver for the FUSE NTFS-3G module arises from the reading beyond the buffer’s allowed limits. This allows an attacker to access confidential data, compromise its integrity, and cause service failures.

The vulnerability of the ntfsattrfindinattrdef function in the NTFS file system driver for the FUSE NTFS-3G module relates to reading data from within allowable buffer limits. Exploiting this vulnerability can allow attackers to access confidential data, compromise its integrity, and cause servic...

The vulnerability of the ntfs inode_lookup_by_name function in the NTFS file system driver for the FUSE NTFS-3G module relates to writing beyond the buffer boundaries in memory. This allows an attacker to gain access to confidential data, compromise its integrity, and cause service failures.

The vulnerability of the ntfs inodelookupbyname function in the NTFS file system driver for the FUSE NTFS-3G module is related to the lack of length checking for attributes. Exploiting this vulnerability can allow attackers to access confidential data, compromise its integrity, and cause service...

The vulnerability of the NTFS file system driver for the FUSE NTFS-3G module, related to writing beyond the buffer boundary, allows attackers to access confidential data, compromise its integrity, and cause service failures.

The vulnerability of the NTFS file system driver for the FUSE NTFS-3G module is related to writing beyond the buffer boundaries. Exploiting this vulnerability can allow an attacker to access confidential data, compromise its integrity, and cause service failures using a specially created NTFS ind...

Fedora: Security Advisory for ntfs-3g-system-compression (FEDORA-2021-38d1b07839)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora: Security Advisory for ntfs-3g-system-compression (FEDORA-2021-4dd269a76c)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] Fedora 35 Update: ntfs-3g-system-compression-1.0-7.fc35

System compression, also known as "Compact OS", is a Windows feature that allows rarely modified files to be compressed using the XPRESS or LZX compression formats. It is not built directly into NTFS but rather is implemented using reparse points. This feature appeared in Windows 10 and it appear...

[SECURITY] Fedora 33 Update: ntfs-3g-system-compression-1.0-7.fc33

System compression, also known as "Compact OS", is a Windows feature that allows rarely modified files to be compressed using the XPRESS or LZX compression formats. It is not built directly into NTFS but rather is implemented using reparse points. This feature appeared in Windows 10 and it appear...

PT-2021-5800 · Ntfs-3G +7 · Ntfs-3G +7

Name of the Vulnerable Software and Affected Versions: NTFS-3G versions prior to 2021.8.22 Description: The issue is related to a crafted NTFS image that can cause an out-of-bounds read in the ntfs runlists merge i function of the NTFS-3G driver for the FUSE module. This can potentially allow an...

USN-4911-1: Linux kernel (OEM) vulnerabilities

It was discovered that the Nouveau GPU driver in the Linux kernel did not properly handle error conditions in some situations. A local attacker could use this to cause a denial of service system crash. CVE-2020-25639 Jan Beulich discovered that the Xen netback backend in the Linux kernel did not...

Privilege Escalation

NTFS is vulnerable to privilege escalation. The vulnerability exist because a read-write NTFS driver for FUSE does not scrub the environment before executing modprobe with elevated privileges...

CVE-2019-1682

A vulnerability in the FUSE filesystem functionality for Cisco Application Policy Infrastructure Controller APIC software could allow an authenticated, local attacker to escalate privileges to root on an affected device. The vulnerability is due to insufficient input validation for certain comman...

CVE-2019-1682 Cisco Application Policy Infrastructure Controller Privilege Escalation Vulnerability

A vulnerability in the FUSE filesystem functionality for Cisco Application Policy Infrastructure Controller APIC software could allow an authenticated, local attacker to escalate privileges to root on an affected device. The vulnerability is due to insufficient input validation for certain comman...