Launchpad.net

Launchpad Home
Code
Bugs
Blueprints
Translations
Answers

CVE 2021-33285

In NTFS-3G versions < 2021.8.22, when a specially crafted NTFS attribute is supplied to the function ntfs_get_attribute_value, a heap buffer overflow can occur allowing for memory disclosure or denial of service. The vulnerability is caused by an out-of-bound buffer access which can be triggered by mounting a crafted ntfs partition. The root cause is a missing consistency check after reading an MFT record : the "bytes_in_use" field should be less than the "bytes_allocated" field. When it is not, the parsing of the records proceeds into the wild.

Related bugs and status

CVE-2021-33285 (Candidate) is related to these bugs:

Bug #1951239: Merge ntfs-3g 1:2021.8.22-3 from Debian

Summary				In	Importance	Status
	1951239	Merge ntfs-3g 1:2021.8.22-3 from Debian		ntfs-3g (Ubuntu)	Wishlist	Fix Released

See the

CVE page on Mitre.org for more details.

References

MISC: https://bugs.debian.or...
MISC: https://bugzilla.redha...
MISC: https://github.com/tux...
MISC: https://www.openwall.c...
DEBIAN: DSA-4971
MLIST: [oss-security] 2021083...
FEDORA: FEDORA-2021-e7c8ba6301
FEDORA: FEDORA-2021-5b1dac797b
MLIST: [debian-lts-announce] ...
GENTOO: GLSA-202301-01