CVE-2024-41019

July 29, 2024, 2:12 p.m.

None
No Score

Description

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Validate ff offset This adds sanity checks for ff offset. There is a check on rt->first_free at first, but walking through by ff without any check. If the second ff is a large offset. We may encounter an out-of-bound read.

Product(s) Impacted

Product Versions
Linux kernel
  • []

Weaknesses

Common security weaknesses mapped to this vulnerability.

References

https://git.kernel.org/stable/c/35652dfa8cc9a8a900ec0f1e0395781f94ffc5f0
https://git.kernel.org/stable/c/50c47879650b4c97836a0086632b3a2e300b0f06
https://git.kernel.org/stable/c/617cf144c206f98978ec730b17159344fd147cb4
https://git.kernel.org/stable/c/6ae7265a7b816879fd0203e83b5030d3720bbb7a
https://git.kernel.org/stable/c/818a257428644b8873e79c44404d8fb6598d4440
https://git.kernel.org/stable/c/82c94e6a7bd116724738aa67eba6f5fedf3a3319

Tags

416baaa9-dc9f-4396-8d5f-8c081fb06d67
2024-07-29
CVE-2024-41019

Timeline

Published: July 29, 2024, 7:15 a.m.
Last Modified: July 29, 2024, 2:12 p.m.

Status : Awaiting Analysis

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

416baaa9-dc9f-4396-8d5f-8c081fb06d67

*Disclaimer: Some vulnerabilities do not have an associated CPE. To enhance the data, we use AI to infer CPEs based on CVE details. This is an automated process and might not always be accurate.