Описание
An invalid return code in fuse_kern_mount enables intercepting of libfuse-lite protocol traffic between NTFS-3G and the kernel in NTFS-3G through 2021.8.22 when using libfuse-lite.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| ntfs-3g | fixed | 1:2022.5.17-1 | package |
Примечания
https://www.openwall.com/lists/oss-security/2022/05/26/2
https://github.com/tuxera/ntfs-3g/security/advisories/GHSA-6mv4-4v73-xw58
https://www.openwall.com/lists/oss-security/2022/06/07/4
Patches: https://github.com/tuxera/ntfs-3g/compare/2021.8.22...2022.5.17
https://github.com/tuxera/ntfs-3g/commit/7f81935f32e58e8fec22bc46683b1b067469405f (2022.5.17)
https://unparalleled.eu/publications/2022/advisory-unpar-2022-0.txt
https://unparalleled.eu/blog/2022/20220607-help-to-heap-suid-privilege-escalation/
EPSS
Связанные уязвимости
An invalid return code in fuse_kern_mount enables intercepting of libfuse-lite protocol traffic between NTFS-3G and the kernel in NTFS-3G through 2021.8.22 when using libfuse-lite.
An invalid return code in fuse_kern_mount enables intercepting of libfuse-lite protocol traffic between NTFS-3G and the kernel in NTFS-3G through 2021.8.22 when using libfuse-lite.
An invalid return code in fuse_kern_mount enables intercepting of libfuse-lite protocol traffic between NTFS-3G and the kernel in NTFS-3G through 2021.8.22 when using libfuse-lite.
An invalid return code in fuse_kern_mount enables intercepting of libfuse-lite protocol traffic between NTFS-3G and the kernel in NTFS-3G through 2021.8.22 when using libfuse-lite.
EPSS