USN-3182-1: NTFS-3G vulnerability
1 February 2017
NTFS-3G could be made to load kernel modules as an administrator.
- ntfs-3g - read/write NTFS driver for FUSE
Jann Horn discovered that NTFS-3G incorrectly filtered environment variables
when using the modprobe utility. A local attacker could possibly use this issue
to load arbitrary kernel modules.