Description
An integer underflow issue exists in ntfs-3g 2017.3.23. A local attacker could potentially exploit this by running /bin/ntfs-3g with specially crafted arguments from a specially crafted directory to cause a heap buffer overflow, resulting in a crash or the ability to execute arbitrary code. In installations where /bin/ntfs-3g is a setuid-root binary, this could lead to a local escalation of privileges.
References (5)
Core 5
Core References
Release Notes, Vendor Advisory x_refsource_misc
https://www.tuxera.com/community/release-history/
Third Party Advisory vendor-advisory
x_refsource_redhat
https://access.redhat.com/errata/RHSA-2019:2308
Third Party Advisory vendor-advisory
x_refsource_redhat
https://access.redhat.com/errata/RHSA-2019:3345
Third Party Advisory vendor-advisory
x_refsource_redhat
https://access.redhat.com/errata/RHBA-2019:3723
Third Party Advisory vendor-advisory
x_refsource_gentoo
https://security.gentoo.org/glsa/202007-45
Scores
CVSS v3
7.0
EPSS
0.0010
EPSS Percentile
27.9%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-191
CWE-787
Status
published
Products (10)
redhat/enterprise_linux
8.0
redhat/enterprise_linux_eus
8.1
redhat/enterprise_linux_eus
8.2
redhat/enterprise_linux_eus
8.4
redhat/enterprise_linux_server
7.0
redhat/enterprise_linux_server_aus
8.2
redhat/enterprise_linux_server_aus
8.4
redhat/enterprise_linux_server_tus
8.2
redhat/enterprise_linux_server_tus
8.4
tuxera/ntfs-3g
2017.3.23
Published
Jun 05, 2019
Tracked Since
Feb 18, 2026