8 matches found
CVE-2026-46072
In the Linux kernel, the following vulnerability has been resolved: ntfs3: add buffer boundary checks to rununpack rununpack checks runbuf runlast at the top of the while loop but then reads sizesize and offsetsize bytes via rununpacks64 without verifying they fit within the remaining buffer. A...
Linux Distros Unpatched Vulnerability : CVE-2026-46072
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ntfs3: add buffer boundary checks to rununpack rununpack checks runbuf runlast at the top of the while loop but then reads sizesize and offsetsize bytes via...
AZL-9847 CVE-2022-30784 affecting package ntfs-3g for versions less than 2022.5.17-1
A crafted NTFS image can cause heap exhaustion in ntfsgetattributevalue in NTFS-3G through 2021.8.22...
The vulnerability of the `ntfsattr_find_inattrdef` function in the NTFS file system driver for the FUSE NTFS-3G module arises from the reading beyond the buffer’s allowed limits. This allows an attacker to access confidential data, compromise its integrity, and cause service failures.
The vulnerability of the ntfsattrfindinattrdef function in the NTFS file system driver for the FUSE NTFS-3G module relates to reading data from within allowable buffer limits. Exploiting this vulnerability can allow attackers to access confidential data, compromise its integrity, and cause servic...
The vulnerability of the ntfs inode_lookup_by_name function in the NTFS file system driver for the FUSE NTFS-3G module, related to buffer overflow attacks, allows attackers to gain access to confidential data, compromise its integrity, and cause service failures.
The vulnerability of the ntfs inodelookupbyname function in the NTFS file system driver for the FUSE NTFS-3G module is related to buffer overflow attacks. Exploiting this vulnerability can allow attackers to access confidential data, compromise its integrity, and cause service failures through th...
PT-2025-37638
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The Linux kernel contains a vulnerability in the NTFS3 file system implementation. Specifically, a null pointer dereference can occur in the attr load runs vcn function when handling...
ntfs-3g: Out-of-bounds read in ntfs_runlists_merge_i()
The ntfs3g package is susceptible to an input validation flaw. When processing a crafted NTFS image there is an improper check which leads to an out of bounds read. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability...
PT-2021-5779 · Ntfs-3G +7 · Ntfs-3G +7
Name of the Vulnerable Software and Affected Versions: NTFS-3G versions prior to 2021.8.22 Description: A heap buffer overflow can occur when a specially crafted unicode string is supplied in an NTFS image, potentially allowing for code execution. This issue may also enable an attacker to access...