Search CVE reports


Toggle filters

1 – 10 of 45 results


CVE-2026-56136

Medium priority

Some fixes available 3 of 7

In NTFS-3G through 2026.2.25, an out-of-bounds read exists in ntfs_ir_nill() in libntfs-3g/index.c that allows an attacker to read possibly confidential information in an ntfs-3g process by crafting a malicious NTFS image. This...

1 affected package

ntfs-3g

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
ntfs-3g Fixed Fixed Fixed Needs evaluation Needs evaluation
Show less packages

CVE-2026-56135

Medium priority

Some fixes available 3 of 7

In NTFS-3G through 2026.2.25, a heap-based buffer overflow exists in the function build_inherited_id() in libntfs-3g/security.c that allows an attacker to corrupt heap memory in the SUID-root ntfs-3g binary by crafting a malicious...

1 affected package

ntfs-3g

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
ntfs-3g Fixed Fixed Fixed Needs evaluation Needs evaluation
Show less packages

CVE-2026-46572

Medium priority

Some fixes available 3 of 7

In NTFS-3G through 2026.2.25, a heap buffer overflow exists in ntfs_ib_cut_tail() in libntfs-3g/index.c that allows an attacker to corrupt heap memory in the SUID-root ntfs-3g binary by crafting a malicious NTFS image. The...

1 affected package

ntfs-3g

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
ntfs-3g Fixed Fixed Fixed Needs evaluation Needs evaluation
Show less packages

CVE-2026-46571

Medium priority

Some fixes available 3 of 7

In NTFS-3G through 2026.2.25, a out-of-bounds read exists in ntfs_fix_file_name() in libntfs-3g/reparse.c that allows an attacker to read possibly confidential information in ntfs-3g process memory by crafting a malicious NTFS...

1 affected package

ntfs-3g

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
ntfs-3g Fixed Fixed Fixed Needs evaluation Needs evaluation
Show less packages

CVE-2026-46570

Medium priority

Some fixes available 3 of 7

In NTFS-3G through 2026.2.25, a heap buffer overflow exists in ntfs_index_walk_down() in libntfs-3g/index.c that allows an attacker to corrupt heap memory in the SUID-root ntfs-3g binary by crafting a malicious NTFS image. The...

1 affected package

ntfs-3g

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
ntfs-3g Fixed Fixed Fixed Needs evaluation Needs evaluation
Show less packages

CVE-2026-46569

Medium priority

Some fixes available 3 of 7

In NTFS-3G through 2026.2.25, a heap buffer overflow exists in ntfs_ib_copy_tail(), in libntfs-3g/index.c, that allows an attacker to corrupt heap memory in the SUID-root ntfs-3g binary by crafting a malicious NTFS image. The...

1 affected package

ntfs-3g

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
ntfs-3g Fixed Fixed Fixed Needs evaluation Needs evaluation
Show less packages

CVE-2026-42618

Medium priority

Some fixes available 3 of 7

In NTFS-3G through 2026.2.25, a heap buffer overflow exists in ntfs_decompress() in compress.c that allows an attacker to corrupt one byte of heap memory in the SUID-root ntfs-3g binary by crafting a malicious NTFS image. The...

1 affected package

ntfs-3g

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
ntfs-3g Fixed Fixed Fixed Needs evaluation Needs evaluation
Show less packages

CVE-2026-42617

Medium priority

Some fixes available 3 of 7

In NTFS-3G through 2026.2.25, a heap buffer overflow exists in ntfs_ir_to_ib() in index.c that allows an attacker to corrupt heap memory in the SUID-root ntfs-3g binary by crafting a malicious NTFS image. The overflow is triggered...

1 affected package

ntfs-3g

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
ntfs-3g Fixed Fixed Fixed Needs evaluation Needs evaluation
Show less packages

CVE-2026-42616

Medium priority

Some fixes available 3 of 7

In NTFS-3G through 2026.2.25, a heap buffer overflow exists in cat() in cat.c that allows an attacker to corrupt heap memory in the ntfscat binary by crafting a malicious NTFS image. The overflow is triggered by reading a file.

1 affected package

ntfs-3g

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
ntfs-3g Fixed Fixed Fixed Needs evaluation Needs evaluation
Show less packages

CVE-2026-40706

Medium priority

Some fixes available 4 of 8

In NTFS-3G 2022.10.3 before 2026.2.25, a heap buffer overflow exists in ntfs_build_permissions_posix() in acls.c that allows an attacker to corrupt heap memory in the SUID-root ntfs-3g binary by crafting a malicious NTFS image....

1 affected package

ntfs-3g

Package 26.04 LTS 24.04 LTS 22.04 LTS 20.04 LTS 18.04 LTS
ntfs-3g Fixed Fixed Fixed Needs evaluation Needs evaluation
Show less packages