rpm package
suse/ntfs-3g&distro=SUSE Linux Enterprise Software Development Kit 11 SP4
pkg:rpm/suse/ntfs-3g&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2011%20SP4
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2017-0358 | Hig | 7.8 | < 2011.4.12-0.9.3.1 | 2011.4.12-0.9.3.1 | Apr 13, 2018 | Jann Horn of Google Project Zero discovered that NTFS-3G, a read-write NTFS driver for FUSE, does not scrub the environment before executing modprobe with elevated privileges. A local user can take advantage of this flaw for local root privilege escalation. |
- affected < 2011.4.12-0.9.3.1fixed 2011.4.12-0.9.3.1
Jann Horn of Google Project Zero discovered that NTFS-3G, a read-write NTFS driver for FUSE, does not scrub the environment before executing modprobe with elevated privileges. A local user can take advantage of this flaw for local root privilege escalation.