VYPR

rpm package

suse/ntfs-3g&distro=SUSE Linux Enterprise Software Development Kit 11 SP4

pkg:rpm/suse/ntfs-3g&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2011%20SP4

Vulnerabilities (1)

  • CVE-2017-0358HigApr 13, 2018
    affected < 2011.4.12-0.9.3.1fixed 2011.4.12-0.9.3.1

    Jann Horn of Google Project Zero discovered that NTFS-3G, a read-write NTFS driver for FUSE, does not scrub the environment before executing modprobe with elevated privileges. A local user can take advantage of this flaw for local root privilege escalation.