Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2021-35267

NTFS-3G versions < 2021.8.22, a stack buffer overflow can occur when correcting differences in the MFT and MFTMirror allowing for code execution or escalation of privileges when setuid-root.

Related bugs and status

CVE-2021-35267 (Candidate) is related to these bugs:

Bug #1951239: Merge ntfs-3g 1:2021.8.22-3 from Debian

Summary				In	Importance	Status
	1951239	Merge ntfs-3g 1:2021.8.22-3 from Debian		ntfs-3g (Ubuntu)	Wishlist	Fix Released

See the

CVE page on Mitre.org for more details.

References

MISC: http://ntfs-3g.com
MISC: https://github.com/tux...
DEBIAN: DSA-4971
MLIST: [oss-security] 2021083...
FEDORA: FEDORA-2021-e7c8ba6301
FEDORA: FEDORA-2021-5b1dac797b
MLIST: [debian-lts-announce] ...
GENTOO: GLSA-202301-01