Lucene search
+L

21 matches found

mscve
mscve
added 2026/05/28 8:9 a.m.9 views

ntfs3: add buffer boundary checks to run_unpack()

...

7.1CVSS5.4AI score0.00123EPSS
Exploits0
mscve
mscve
added 2026/05/28 8:2 a.m.9 views

ntfs3: fix integer overflow in run_unpack() volume boundary check

...

7.8CVSS5.4AI score0.00142EPSS
Exploits0
osv
osv
added 2026/05/27 2:17 p.m.7 views

UBUNTU-CVE-2026-46072

In the Linux kernel, the following vulnerability has been resolved: ntfs3: add buffer boundary checks to rununpack rununpack checks runbuf runlast at the top of the while loop but then reads sizesize and offsetsize bytes via rununpacks64 without verifying they fit within the remaining buffer. A...

5.5CVSS5.8AI score0.00123EPSS
Exploits0References7
debiancve
debiancve
added 2026/05/27 12:58 p.m.13 views

CVE-2026-46072

In the Linux kernel, the following vulnerability has been resolved: ntfs3: add buffer boundary checks to rununpack rununpack checks runbuf runlast at the top of the while loop but then reads sizesize and offsetsize bytes via rununpacks64 without verifying they fit within the remaining buffer. A...

5.5CVSS5.8AI score0.00123EPSS
Exploits0
osv
osv
added 2026/05/27 12:58 p.m.1 views

CVE-2026-46072 ntfs3: add buffer boundary checks to run_unpack()

In the Linux kernel, the following vulnerability has been resolved: ntfs3: add buffer boundary checks to rununpack rununpack checks runbuf runlast at the top of the while loop but then reads sizesize and offsetsize bytes via rununpacks64 without verifying they fit within the remaining buffer. A...

5.5CVSS5.9AI score0.00123EPSS
Exploits0References10
osv
osv
added 2026/05/27 12:57 p.m.1 views

CVE-2026-46062 ntfs3: fix integer overflow in run_unpack() volume boundary check

In the Linux kernel, the following vulnerability has been resolved: ntfs3: fix integer overflow in rununpack volume boundary check The volume boundary check lcn + len sbi-used.bitmap.nbits uses raw addition which can wrap around for large lcn and len values, bypassing the validation. Use...

7.8CVSS6.5AI score0.00142EPSS
Exploits0References10
ptsecurity
ptsecurity
added 2026/05/27 12:0 a.m.22 views

PT-2026-43939

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The run unpack function in the ntfs3 driver fails to verify if the size size and offset size bytes read via run unpack s64 fit within the remaining buffer, despite checking run buf run...

5.5CVSS5.9AI score0.00123EPSS
Exploits0
ubuntucve
ubuntucve
added 2026/05/27 12:0 a.m.14 views

CVE-2026-46062

In the Linux kernel, the following vulnerability has been resolved: ntfs3: fix integer overflow in rununpack volume boundary check The volume boundary check lcn + len sbi-used.bitmap.nbits uses raw addition which can wrap around for large lcn and len values, bypassing the validation. Use...

7.8CVSS6.6AI score0.00142EPSS
Exploits0References6
ptsecurity
ptsecurity
added 2026/05/27 12:0 a.m.14 views

PT-2026-43929

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An integer overflow exists in the run unpack function within the ntfs3 driver. The volume boundary check lcn + len sbi-used.bitmap.nbits utilizes raw addition, which can wrap around when...

7.8CVSS5.9AI score0.00142EPSS
Exploits0
osv
osv
added 2026/05/06 11:27 a.m.2 views

CVE-2026-43127 ntfs3: fix circular locking dependency in run_unpack_ex

In the Linux kernel, the following vulnerability has been resolved: ntfs3: fix circular locking dependency in rununpackex Syzbot reported a circular locking dependency between wnd-rwlock sbi-used.bitmap and ni-file.runlock. The deadlock scenario: 1. ntfsextendmft takes ni-file.runlock then...

5.5CVSS5.8AI score0.00093EPSS
Exploits0References6
ubuntucve
ubuntucve
added 2026/03/18 11:16 a.m.8 views

CVE-2025-71265

In the Linux kernel, the following vulnerability has been resolved: fs: ntfs3: fix infinite loop in attrloadrunsrange on inconsistent metadata We found an infinite loop bug in the ntfs3 file system that can lead to a Denial-of-Service DoS condition. A malformed NTFS image can cause an infinite lo...

5.5CVSS5.7AI score0.00121EPSS
Exploits0References17
astralinux
astralinux
added 2026/03/03 9:29 a.m.6 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: fs: ntfs3: A integer overflow has been fixed in the rununpack function. The MFT record relative to the file being opened contains its runlist, an array containing information about the file’s location on the physical disk. Analys...

6.2AI score0.00202EPSS
Exploits0References3
mscve
mscve
added 2025/10/29 8:4 a.m.5 views

fs: ntfs3: Fix integer overflow in run_unpack()

...

7.8CVSS7AI score0.00202EPSS
Exploits0
susecve
susecve
added 2025/10/29 12:24 a.m.12 views

SUSE CVE-2025-40068

In the Linux kernel, the following vulnerability has been resolved: fs: ntfs3: Fix integer overflow in rununpack The MFT record relative to the file being opened contains its runlist, an array containing information about the file's location on the physical disk. Analysis of all Call Stack paths...

5.5CVSS6.6AI score0.00202EPSS
Exploits0References3
nvd
nvd
added 2025/10/28 12:15 p.m.10 views

CVE-2025-40068

In the Linux kernel, the following vulnerability has been resolved: fs: ntfs3: Fix integer overflow in rununpack The MFT record relative to the file being opened contains its runlist, an array containing information about the file's location on the physical disk. Analysis of all Call Stack paths...

0.00202EPSS
Exploits0References6
osv
osv
added 2025/10/28 12:15 p.m.11 views

UBUNTU-CVE-2025-40068

In the Linux kernel, the following vulnerability has been resolved: fs: ntfs3: Fix integer overflow in rununpack The MFT record relative to the file being opened contains its runlist, an array containing information about the file's location on the physical disk. Analysis of all Call Stack paths...

5.9AI score0.00202EPSS
Exploits0References38
osv
osv
added 2025/10/28 11:48 a.m.4 views

CVE-2025-40068 fs: ntfs3: Fix integer overflow in run_unpack()

In the Linux kernel, the following vulnerability has been resolved: fs: ntfs3: Fix integer overflow in rununpack The MFT record relative to the file being opened contains its runlist, an array containing information about the file's location on the physical disk. Analysis of all Call Stack paths...

6.6AI score0.00202EPSS
Exploits0References9
euvd
euvd
added 2025/10/28 11:48 a.m.3 views

EUVD-2025-36460

In the Linux kernel, the following vulnerability has been resolved: fs: ntfs3: Fix integer overflow in rununpack The MFT record relative to the file being opened contains its runlist, an array containing information about the file's location on the physical disk. Analysis of all Call Stack paths...

6.1AI score0.00202EPSS
Exploits0References7
cve
cve
added 2025/10/28 11:48 a.m.26 views

CVE-2025-40068

The CVE-2025-40068 entry is supported by multiple connected advisories confirming a concrete Linux kernel issue in the ntfs3 subsystem. The vulnerability stems from an overflow in the run_unpack() path that decodes the MFT runlist (used to map virtual clusters to logical clusters). Because values...

6.3AI score0.00202EPSS
Exploits0References6
ptsecurity
ptsecurity
added 2025/08/25 12:0 a.m.9 views

PT-2025-44136

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the Linux kernel's NTFS3 subsystem related to integer overflow in the run unpack function. The run unpack function decodes compressed runlist data from MFT attributes,...

4.6CVSS6AI score0.00202EPSS
Exploits0
Rows per page
Query Builder