Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2022-30786

Опубликовано: 26 мая 2022
Источник: debian
EPSS Низкий

Описание

A crafted NTFS image can cause a heap-based buffer overflow in ntfs_names_full_collate in NTFS-3G through 2021.8.22.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
ntfs-3gfixed1:2022.5.17-1package

Примечания

  • https://www.openwall.com/lists/oss-security/2022/05/26/1

  • https://github.com/tuxera/ntfs-3g/security/advisories/GHSA-xchm-ph5h-hw4x

  • Patches: https://github.com/tuxera/ntfs-3g/compare/2021.8.22...2022.5.17

  • https://github.com/tuxera/ntfs-3g/commit/838b6e35b43062353998853eab50cd0675201ed7 (2022.5.17)

  • https://github.com/tuxera/ntfs-3g/commit/5ce8941bf47291cd6ffe7cdb1797253f1cc3a86f (2022.5.17)

EPSS

Процентиль: 8%
0.00034
Низкий

Связанные уязвимости

CVSS3: 7.8
ubuntu
около 3 лет назад

A crafted NTFS image can cause a heap-based buffer overflow in ntfs_names_full_collate in NTFS-3G through 2021.8.22.

CVSS3: 7.8
redhat
около 3 лет назад

A crafted NTFS image can cause a heap-based buffer overflow in ntfs_names_full_collate in NTFS-3G through 2021.8.22.

CVSS3: 7.8
nvd
около 3 лет назад

A crafted NTFS image can cause a heap-based buffer overflow in ntfs_names_full_collate in NTFS-3G through 2021.8.22.

CVSS3: 7.8
msrc
около 3 лет назад

Описание отсутствует

CVSS3: 6.8
github
около 3 лет назад

A crafted NTFS image can cause a heap-based buffer overflow in ntfs_names_full_collate in NTFS-3G through 2021.8.22.

EPSS

Процентиль: 8%
0.00034
Низкий