Your submission was sent successfully! Close

You have successfully unsubscribed! Close

Thank you for signing up for our newsletter!
In these regular emails you will find the latest updates about Ubuntu and upcoming events where you can meet our team.Close

Search CVE reports


Toggle filters

1 – 10 of 35 results


CVE-2023-52890

Low priority
Vulnerable

NTFS-3G before 75dcdc2 has a use-after-free in ntfs_uppercase_mbs in libntfs-3g/unistr.c. NOTE: discussion suggests that exploitation would be challenging.

1 affected packages

ntfs-3g

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
ntfs-3g Vulnerable Vulnerable Vulnerable Vulnerable Vulnerable
Show less packages

CVE-2022-40284

Medium priority
Fixed

A buffer overflow was discovered in NTFS-3G before 2022.10.3. Crafted metadata in an NTFS image can cause code execution. A local attacker can exploit this if the ntfs-3g binary is setuid root. A physically proximate attacker can...

1 affected packages

ntfs-3g

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
ntfs-3g Fixed Fixed Fixed Fixed
Show less packages

CVE-2022-30789

Medium priority
Fixed

A crafted NTFS image can cause a heap-based buffer overflow in ntfs_check_log_client_array in NTFS-3G through 2021.8.22.

1 affected packages

ntfs-3g

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
ntfs-3g Fixed Fixed Fixed Fixed
Show less packages

CVE-2022-30788

Medium priority
Fixed

A crafted NTFS image can cause a heap-based buffer overflow in ntfs_mft_rec_alloc in NTFS-3G through 2021.8.22.

1 affected packages

ntfs-3g

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
ntfs-3g Fixed Fixed Fixed Fixed
Show less packages

CVE-2022-30787

Medium priority
Fixed

An integer underflow in fuse_lib_readdir enables arbitrary memory read operations in NTFS-3G through 2021.8.22 when using libfuse-lite.

1 affected packages

ntfs-3g

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
ntfs-3g Fixed Fixed Fixed Fixed
Show less packages

CVE-2022-30786

Medium priority
Fixed

A crafted NTFS image can cause a heap-based buffer overflow in ntfs_names_full_collate in NTFS-3G through 2021.8.22.

1 affected packages

ntfs-3g

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
ntfs-3g Fixed Fixed Fixed Fixed
Show less packages

CVE-2022-30785

Medium priority
Fixed

A file handle created in fuse_lib_opendir, and later used in fuse_lib_readdir, enables arbitrary memory read and write operations in NTFS-3G through 2021.8.22 when using libfuse-lite.

1 affected packages

ntfs-3g

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
ntfs-3g Fixed Fixed Fixed Fixed
Show less packages

CVE-2022-30784

Medium priority
Fixed

A crafted NTFS image can cause heap exhaustion in ntfs_get_attribute_value in NTFS-3G through 2021.8.22.

1 affected packages

ntfs-3g

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
ntfs-3g Fixed Fixed Fixed Fixed
Show less packages

CVE-2022-30783

Medium priority
Fixed

An invalid return code in fuse_kern_mount enables intercepting of libfuse-lite protocol traffic between NTFS-3G and the kernel in NTFS-3G through 2021.8.22 when using libfuse-lite.

1 affected packages

ntfs-3g

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
ntfs-3g Fixed Fixed Fixed Fixed
Show less packages

CVE-2021-46790

Low priority
Fixed

ntfsck in NTFS-3G through 2021.8.22 has a heap-based buffer overflow involving buffer+512*3-2. NOTE: the upstream position is that ntfsck is deprecated; however, it is shipped by some Linux distributions.

1 affected packages

ntfs-3g

Package 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS 16.04 LTS
ntfs-3g Fixed Fixed Fixed Fixed
Show less packages