Описание
Security update for ntfs-3g_ntfsprogs
This update for ntfs-3g_ntfsprogs fixes the following issues:
Update to version 2021.8.22 (bsc#1189720):
- Fixed compile error when building with libfuse < 2.8.0
- Fixed obsolete macros in configure.ac
- Signalled support of UTIME_OMIT to external libfuse2
- Fixed an improper macro usage in ntfscp.c
- Updated the repository change in the README
- Fixed vulnerability threats caused by maliciously tampered NTFS partitions
- Security fixes: CVE-2021-33285, CVE-2021-33286, CVE-2021-33287, CVE-2021-33289, CVE-2021-35266, CVE-2021-35267, CVE-2021-35268, CVE-2021-35269, CVE-2021-39251, CVE-2021-39252, CVE-2021-39253, CVE_2021-39254, CVE-2021-39255, CVE-2021-39256, CVE-2021-39257, CVE-2021-39258, CVE-2021-39259, CVE-2021-39260, CVE-2021-39261, CVE-2021-39262, CVE-2021-39263.
- Library soversion is now 89
- Changes in version 2017.3.23
- Delegated processing of special reparse points to external plugins
- Allowed kernel cacheing by lowntfs-3g when not using Posix ACLs
- Enabled fallback to read-only mount when the volume is hibernated
- Made a full check for whether an extended attribute is allowed
- Moved secaudit and usermap to ntfsprogs (now ntfssecaudit and ntfsusermap)
- Enabled encoding broken UTF-16 into broken UTF-8
- Autoconfigured selecting <sys/sysmacros.h> vs <sys/mkdev>
- Allowed using the full library API on systems without extended attributes support
- Fixed DISABLE_PLUGINS as the condition for not using plugins
- Corrected validation of multi sector transfer protected records
- Denied creating/removing files from $Extend
- Returned the size of locale encoded target as the size of symlinks
Список пакетов
Container suse/sles/15.6/libguestfs-tools:1.1.1
Container suse/sles/15.7/libguestfs-tools:1.4.0
SUSE Linux Enterprise Workstation Extension 15 SP2
SUSE Linux Enterprise Workstation Extension 15 SP3
Ссылки
- Link for SUSE-SU-2021:2971-1
- E-Mail link for SUSE-SU-2021:2971-1
- SUSE Security Ratings
- SUSE Bug 1189720
- SUSE CVE CVE-2019-9755 page
- SUSE CVE CVE-2021-33285 page
- SUSE CVE CVE-2021-33286 page
- SUSE CVE CVE-2021-33287 page
- SUSE CVE CVE-2021-33289 page
- SUSE CVE CVE-2021-35266 page
- SUSE CVE CVE-2021-35267 page
- SUSE CVE CVE-2021-35268 page
- SUSE CVE CVE-2021-35269 page
- SUSE CVE CVE-2021-39251 page
- SUSE CVE CVE-2021-39252 page
- SUSE CVE CVE-2021-39253 page
- SUSE CVE CVE-2021-39255 page
- SUSE CVE CVE-2021-39256 page
- SUSE CVE CVE-2021-39257 page
- SUSE CVE CVE-2021-39258 page
Описание
An integer underflow issue exists in ntfs-3g 2017.3.23. A local attacker could potentially exploit this by running /bin/ntfs-3g with specially crafted arguments from a specially crafted directory to cause a heap buffer overflow, resulting in a crash or the ability to execute arbitrary code. In installations where /bin/ntfs-3g is a setuid-root binary, this could lead to a local escalation of privileges.
Затронутые продукты
Ссылки
- CVE-2019-9755
- SUSE Bug 1130165
Описание
In NTFS-3G versions < 2021.8.22, when a specially crafted NTFS attribute is supplied to the function ntfs_get_attribute_value, a heap buffer overflow can occur allowing for memory disclosure or denial of service. The vulnerability is caused by an out-of-bound buffer access which can be triggered by mounting a crafted ntfs partition. The root cause is a missing consistency check after reading an MFT record : the "bytes_in_use" field should be less than the "bytes_allocated" field. When it is not, the parsing of the records proceeds into the wild.
Затронутые продукты
Ссылки
- CVE-2021-33285
Описание
In NTFS-3G versions < 2021.8.22, when a specially crafted unicode string is supplied in an NTFS image a heap buffer overflow can occur and allow for code execution.
Затронутые продукты
Ссылки
- CVE-2021-33286
Описание
In NTFS-3G versions < 2021.8.22, when specially crafted NTFS attributes are read in the function ntfs_attr_pread_i, a heap buffer overflow can occur and allow for writing to arbitrary memory or denial of service of the application.
Затронутые продукты
Ссылки
- CVE-2021-33287
Описание
In NTFS-3G versions < 2021.8.22, when a specially crafted MFT section is supplied in an NTFS image a heap buffer overflow can occur and allow for code execution.
Затронутые продукты
Ссылки
- CVE-2021-33289
Описание
In NTFS-3G versions < 2021.8.22, when a specially crafted NTFS inode pathname is supplied in an NTFS image a heap buffer overflow can occur resulting in memory disclosure, denial of service and even code execution.
Затронутые продукты
Ссылки
- CVE-2021-35266
Описание
NTFS-3G versions < 2021.8.22, a stack buffer overflow can occur when correcting differences in the MFT and MFTMirror allowing for code execution or escalation of privileges when setuid-root.
Затронутые продукты
Ссылки
- CVE-2021-35267
Описание
In NTFS-3G versions < 2021.8.22, when a specially crafted NTFS inode is loaded in the function ntfs_inode_real_open, a heap buffer overflow can occur allowing for code execution and escalation of privileges.
Затронутые продукты
Ссылки
- CVE-2021-35268
Описание
NTFS-3G versions < 2021.8.22, when a specially crafted NTFS attribute from the MFT is setup in the function ntfs_attr_setup_flag, a heap buffer overflow can occur allowing for code execution and escalation of privileges.
Затронутые продукты
Ссылки
- CVE-2021-35269
Описание
A crafted NTFS image can cause a NULL pointer dereference in ntfs_extent_inode_open in NTFS-3G < 2021.8.22.
Затронутые продукты
Ссылки
- CVE-2021-39251
Описание
A crafted NTFS image can cause an out-of-bounds read in ntfs_ie_lookup in NTFS-3G < 2021.8.22.
Затронутые продукты
Ссылки
- CVE-2021-39252
Описание
A crafted NTFS image can cause an out-of-bounds read in ntfs_runlists_merge_i in NTFS-3G < 2021.8.22.
Затронутые продукты
Ссылки
- CVE-2021-39253
Описание
A crafted NTFS image can trigger an out-of-bounds read, caused by an invalid attribute in ntfs_attr_find_in_attrdef, in NTFS-3G < 2021.8.22.
Затронутые продукты
Ссылки
- CVE-2021-39255
Описание
A crafted NTFS image can cause a heap-based buffer overflow in ntfs_inode_lookup_by_name in NTFS-3G < 2021.8.22.
Затронутые продукты
Ссылки
- CVE-2021-39256
Описание
A crafted NTFS image with an unallocated bitmap can lead to a endless recursive function call chain (starting from ntfs_attr_pwrite), causing stack consumption in NTFS-3G < 2021.8.22.
Затронутые продукты
Ссылки
- CVE-2021-39257
Описание
A crafted NTFS image can cause out-of-bounds reads in ntfs_attr_find and ntfs_external_attr_find in NTFS-3G < 2021.8.22.
Затронутые продукты
Ссылки
- CVE-2021-39258
Описание
A crafted NTFS image can trigger an out-of-bounds access, caused by an unsanitized attribute length in ntfs_inode_lookup_by_name, in NTFS-3G < 2021.8.22.
Затронутые продукты
Ссылки
- CVE-2021-39259
Описание
A crafted NTFS image can cause an out-of-bounds access in ntfs_inode_sync_standard_information in NTFS-3G < 2021.8.22.
Затронутые продукты
Ссылки
- CVE-2021-39260
Описание
A crafted NTFS image can cause a heap-based buffer overflow in ntfs_compressed_pwrite in NTFS-3G < 2021.8.22.
Затронутые продукты
Ссылки
- CVE-2021-39261
Описание
A crafted NTFS image can cause an out-of-bounds access in ntfs_decompress in NTFS-3G < 2021.8.22.
Затронутые продукты
Ссылки
- CVE-2021-39262
Описание
A crafted NTFS image can trigger a heap-based buffer overflow, caused by an unsanitized attribute in ntfs_get_attribute_value, in NTFS-3G < 2021.8.22.
Затронутые продукты
Ссылки
- CVE-2021-39263