CVE-2026-53311

The CVE-2026-53311 entry concerns the Linux kernel fuse module. It describes a bug in fuse_dentry_revalidate() where a dentry could be passed without initialized ->d_time, discovered via KMSAN traces involving lookup_open(), __d_alloc(), d_revalidate(), and related path_openat/open_last_lookup...

EUVD-2025-30848

Malicious code in bioql PyPI...

CVE-2024-47746

In the Linux kernel, the following vulnerability has been resolved: fuse: use exclusive lock when FUSEICACHEIOMODE is set This may be a typo. The comment has said shared locks are not allowed when this bit is set. If using shared lock, the wait in fusefilecachedioopen may be forever...

CVE-2024-44947 fuse: Initialize beyond-EOF page contents before setting uptodate

In the Linux kernel, the following vulnerability has been resolved: fuse: Initialize beyond-EOF page contents before setting uptodate fusenotifystore, unlike fusedoreadpage, does not enable page zeroing because it can be used to change partial page contents. So fusenotifystore must be more carefu...

SUSE CVE-2024-38626

In the Linux kernel, the following vulnerability has been resolved: fuse: clear FRSENT when re-adding requests into pending list The following warning was reported by lee bruce: ------------ cut here ------------ WARNING: CPU: 0 PID: 8264 at fs/fuse/dev.c:300 fuserequestend+0x685/0x7e0...

CVE-2024-38626

In the Linux kernel, the following vulnerability has been resolved: fuse: clear FRSENT when re-adding requests into pending list The following warning was reported by lee bruce: ------------ cut here ------------ WARNING: CPU: 0 PID: 8264 at fs/fuse/dev.c:300 fuserequestend+0x685/0x7e0...

Linux kernel security vulnerabilities

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a problem with the fuse module...

ROS-20240403-02

Vulnerability of ntfsnamesfullcollate function of NTFS file system for NTFS-3G FUSE module is related to buffer overflow in dynamic memory. Exploitation of the vulnerability could allow an attacker to execute arbitrary code with elevated privileges using a specially crafted NTFS image file The NT...

The vulnerability of the `fuse_lib_readdir` function in the `libfuse-lite` library of the NTFS file system, which allows a attacker to execute arbitrary code with elevated privileges on the FUSE NTFS-3G module.

The vulnerability of the fuselibreaddir function in the libfuse-lite library of the NTFS file system for the FUSE NTFS-3G module is related to a numerical value loss of significance. Exploiting this vulnerability allows an attacker to execute arbitrary code with elevated privileges using a...

The vulnerability of NTFS file system descriptors for the FUSE NTFS-3G module allows a attacker to execute arbitrary code with elevated privileges.

The vulnerability of NTFS file system descriptors for the FUSE NTFS-3G module relates to reading and writing beyond the buffer boundaries. Exploiting this vulnerability allows an attacker to execute arbitrary code with elevated privileges using a specially crafted request...

The vulnerability of the ntfs_mft_rec_alloc function in the NTFS file system, which allows a hacker to execute arbitrary code with elevated privileges through the FUSE NTFS-3G module.

The vulnerability of the ntfsmftrecalloc function in the NTFS file system relates to buffer overflows in dynamic memory. Exploiting this vulnerability allows an attacker to execute arbitrary code with elevated privileges using a specially created NTFS image file...

The vulnerability of the NTFS file system driver for the FUSE NTFS-3G module, related to writing beyond the buffer boundary, allows attackers to access confidential data, compromise its integrity, and cause service failures.

The vulnerability of the NTFS file system driver for the FUSE NTFS-3G module is related to errors during the correction of differences between the MFT and MFTMirror. Exploiting this vulnerability can allow an attacker to gain access to confidential data, compromise its integrity, and cause servic...

The vulnerability of the ntfs_ie_lookup function in the NTFS file system driver for the FUSE NTFS-3G module arises from the reading beyond the allowed buffer data limits. This allows attackers to access confidential data, compromise its integrity, and cause service failures.

The vulnerability of the ntfsielookup function in the NTFS file system driver for the FUSE NTFS-3G module relates to reading data from beyond the allowed limits of the buffer. Exploiting this vulnerability can allow an attacker to access confidential data, compromise its integrity, and cause...

The vulnerability of the NTFS file system driver for the FUSE NTFS-3G module, related to writing beyond the buffer boundary, allows attackers to access confidential data, compromise its integrity, and cause service failures.

The vulnerability of the NTFS file system driver for the FUSE NTFS-3G module is related to writing beyond the buffer boundaries. Exploiting this vulnerability can allow an attacker to access confidential data, compromise its integrity, and cause service failures through the creation of a speciall...

The vulnerability of the `ntfs_get_attribute_value` function in the NTFS file system driver for the FUSE NTFS-3G module, related to writing beyond buffer boundaries, allows attackers to gain access to confidential data, compromise its integrity, and cause service failures.

The vulnerability of the ntfsgetattributevalue function in the NTFS file system driver for the FUSE NTFS-3G module is related to the absence of attribute filtering. Exploiting this vulnerability can allow attackers to access confidential data, compromise its integrity, and cause service failures...

PT-2021-5760 · Ntfs-3G +7 · Ntfs-3G +7

Name of the Vulnerable Software and Affected Versions: NTFS-3G versions prior to 2021.8.22 Description: The issue is related to an out-of-bounds read in the ntfs ie lookup function of the NTFS-3G driver for the FUSE module. This can be exploited by a crafted NTFS image, potentially allowing an...

fuseiso: Multiple vulnerabilities

Background FuseISO is a FUSE module to mount ISO filesystem images .iso, .nrg, .bin, .mdf and .img files. Description Multiple vulnerabilities have been discovered in fuseiso. Please review the CVE identifiers referenced below for details. Impact A remote attacker could entice a user to open a...

The vulnerability of the NTFS-3G driver for the NTFS file system in FUSE modules of Unix-like operating systems, related to buffer overflows, allows attackers to elevate their privileges to a superuser level.

The vulnerability of the NTFS-3G driver for the NTFS file system in the FUSE module of Unix-like operating systems is related to a numerical overflow condition. Exploiting this vulnerability can allow an attacker to elevate their privileges to a superuser level...

Debian DLA-323-1 : fuseiso security update

The following two issues have recently been fixed in Debian LTS squeeze for the fuseiso package. Issue 1 An integer overflow, leading to a heap-based buffer overflow flaw was found in the way FuseISO, a FUSE module to mount ISO filesystem images, performed reading of certain ZF blocks of particul...

DLA-323-1 fuseiso - security update

Bulletin has no description...