VYPR

rpm package

suse/ntfs-3g_ntfsprogs&distro=SUSE Linux Enterprise Module for Development Tools 15 SP7

pkg:rpm/suse/ntfs-3g_ntfsprogs&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP7

Vulnerabilities (1)

  • CVE-2026-40706HigApr 21, 2026
    affected < 2022.5.17-150000.3.24.1fixed 2022.5.17-150000.3.24.1

    In NTFS-3G 2022.10.3 before 2026.2.25, a heap buffer overflow exists in ntfs_build_permissions_posix() in acls.c that allows an attacker to corrupt heap memory in the SUID-root ntfs-3g binary by crafting a malicious NTFS image. The overflow is triggered on the READ path (stat, re