CVE-2023-45896

HIGH

Linux kernel <6.8.0 - Info Disclosure

Title source: llm

Description

ntfs3 in the Linux kernel through 6.8.0 allows a physically proximate attacker to read kernel memory by mounting a filesystem (e.g., if a Linux distribution is configured to allow unprivileged mounts of removable media) and then leveraging local access to trigger an out-of-bounds read. A length value can be larger than the amount of memory allocated. NOTE: the supplier's perspective is that there is no vulnerability when an attack requires an attacker-modified filesystem image.

References (5)

Core 5

Core References

Mailing List

https://lists.debian.org/debian-lts-announce/2025/01/msg00001.html

Various Sources

https://cdn.kernel.org/pub/linux/kernel/v6.x/ChangeLog-6.5.11

Various Sources

https://dfir.ru/2024/06/19/vulnerabilities-in-7-zip-and-ntfs3/

Patch

https://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=013ff63b649475f0ee134e2c8d0c8e65284ede50

Patch

https://github.com/torvalds/linux/commit/013ff63b649475f0ee134e2c8d0c8e65284ede50

View Patch ZIP pw:eip

Scores

CVSS v3 7.1

EPSS 0.0019

EPSS Percentile 9.4%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-276

Status published

Published Aug 28, 2024

Tracked Since Feb 18, 2026