Описание
A buffer overflow was discovered in NTFS-3G before 2022.10.3. Crafted metadata in an NTFS image can cause code execution. A local attacker can exploit this if the ntfs-3g binary is setuid root. A physically proximate attacker can exploit this if NTFS-3G software is configured to execute upon attachment of an external storage device.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | released | 1:2017.3.23-2ubuntu0.18.04.5 |
| devel | released | 1:2022.5.17-1ubuntu1.1 |
| esm-infra-legacy/trusty | not-affected | 1:2013.1.13AR.1-2ubuntu2+esm4 |
| esm-infra/bionic | not-affected | 1:2017.3.23-2ubuntu0.18.04.5 |
| esm-infra/focal | not-affected | 1:2017.3.23AR.3-3ubuntu1.3 |
| esm-infra/xenial | released | 1:2015.3.14AR.1-1ubuntu0.3+esm4 |
| focal | released | 1:2017.3.23AR.3-3ubuntu1.3 |
| jammy | released | 1:2021.8.22-3ubuntu1.2 |
| kinetic | released | 1:2022.5.17-1ubuntu1.1 |
| lunar | released | 1:2022.5.17-1ubuntu1.1 |
Показывать по
EPSS
7.8 High
CVSS3
Связанные уязвимости
A buffer overflow was discovered in NTFS-3G before 2022.10.3. Crafted metadata in an NTFS image can cause code execution. A local attacker can exploit this if the ntfs-3g binary is setuid root. A physically proximate attacker can exploit this if NTFS-3G software is configured to execute upon attachment of an external storage device.
A buffer overflow was discovered in NTFS-3G before 2022.10.3. Crafted metadata in an NTFS image can cause code execution. A local attacker can exploit this if the ntfs-3g binary is setuid root. A physically proximate attacker can exploit this if NTFS-3G software is configured to execute upon attachment of an external storage device.
A buffer overflow was discovered in NTFS-3G before 2022.10.3. Crafted ...
EPSS
7.8 High
CVSS3