3 matches found
CVE-2018-11730
The libfsntfssecuritydescriptorvaluesfree function in libfsntfssecuritydescriptorvalues.c in libfsntfs through 2018-04-20 allows remote attackers to cause a denial of service double-free via a crafted ntfs file. NOTE: the vendor has disputed this as described in libyal/libfsntfs issue 8 on GitHub...
CVE-2018-11731
The libfsntfsmftentryreadattributes function in libfsntfsmftentry.c in libfsntfs through 2018-04-20 allows remote attackers to cause an information disclosure heap-based buffer over-read via a crafted ntfs file. NOTE: the vendor has disputed this as described in libyal/libfsntfs issue 8 on GitHub...
CVE-2018-11729
The libfsntfsmftentryreadheader function in libfsntfsmftentry.c in libfsntfs through 2018-04-20 allows remote attackers to cause an information disclosure heap-based buffer over-read via a crafted ntfs file. NOTE: the vendor has disputed this as described in libyal/libfsntfs issue 8 on GitHub...