vulnerability
Oracle Linux: CVE-2021-33289: ELSA-2022-1759: virt:ol and virt-devel:ol security, bug fix, and enhancement update (MODERATE) (Multiple Advisories)
Severity | CVSS | Published | Added | Modified |
---|---|---|---|---|
7 | (AV:L/AC:L/Au:S/C:C/I:C/A:C) | Aug 30, 2021 | May 18, 2022 | Dec 6, 2024 |
Severity
7
CVSS
(AV:L/AC:L/Au:S/C:C/I:C/A:C)
Published
Aug 30, 2021
Added
May 18, 2022
Modified
Dec 6, 2024
Description
In NTFS-3G versions < 2021.8.22, when a specially crafted MFT section is supplied in an NTFS image a heap buffer overflow can occur and allow for code execution.
The ntfs3g package is susceptible to a heap overflow on crafted input. When processing the MFT, proper bounds checking was not enforced leading to this software flaw. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability.
The ntfs3g package is susceptible to a heap overflow on crafted input. When processing the MFT, proper bounds checking was not enforced leading to this software flaw. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability.
Solution(s)
oracle-linux-upgrade-hivexoracle-linux-upgrade-hivex-develoracle-linux-upgrade-libguestfsoracle-linux-upgrade-libguestfs-applianceoracle-linux-upgrade-libguestfs-bash-completionoracle-linux-upgrade-libguestfs-develoracle-linux-upgrade-libguestfs-gfs2oracle-linux-upgrade-libguestfs-gobjectoracle-linux-upgrade-libguestfs-gobject-develoracle-linux-upgrade-libguestfs-inspect-iconsoracle-linux-upgrade-libguestfs-javaoracle-linux-upgrade-libguestfs-java-develoracle-linux-upgrade-libguestfs-javadocoracle-linux-upgrade-libguestfs-man-pages-jaoracle-linux-upgrade-libguestfs-man-pages-ukoracle-linux-upgrade-libguestfs-rescueoracle-linux-upgrade-libguestfs-rsyncoracle-linux-upgrade-libguestfs-toolsoracle-linux-upgrade-libguestfs-tools-coracle-linux-upgrade-libguestfs-winsupportoracle-linux-upgrade-libguestfs-xfsoracle-linux-upgrade-libiscsioracle-linux-upgrade-libiscsi-develoracle-linux-upgrade-libiscsi-utilsoracle-linux-upgrade-libnbdoracle-linux-upgrade-libnbd-bash-completionoracle-linux-upgrade-libnbd-develoracle-linux-upgrade-libtpmsoracle-linux-upgrade-libtpms-develoracle-linux-upgrade-libvirtoracle-linux-upgrade-libvirt-clientoracle-linux-upgrade-libvirt-daemonoracle-linux-upgrade-libvirt-daemon-config-networkoracle-linux-upgrade-libvirt-daemon-config-nwfilteroracle-linux-upgrade-libvirt-daemon-driver-interfaceoracle-linux-upgrade-libvirt-daemon-driver-networkoracle-linux-upgrade-libvirt-daemon-driver-nodedevoracle-linux-upgrade-libvirt-daemon-driver-nwfilteroracle-linux-upgrade-libvirt-daemon-driver-qemuoracle-linux-upgrade-libvirt-daemon-driver-secretoracle-linux-upgrade-libvirt-daemon-driver-storageoracle-linux-upgrade-libvirt-daemon-driver-storage-coreoracle-linux-upgrade-libvirt-daemon-driver-storage-diskoracle-linux-upgrade-libvirt-daemon-driver-storage-glusteroracle-linux-upgrade-libvirt-daemon-driver-storage-iscsioracle-linux-upgrade-libvirt-daemon-driver-storage-iscsi-directoracle-linux-upgrade-libvirt-daemon-driver-storage-logicaloracle-linux-upgrade-libvirt-daemon-driver-storage-mpathoracle-linux-upgrade-libvirt-daemon-driver-storage-rbdoracle-linux-upgrade-libvirt-daemon-driver-storage-scsioracle-linux-upgrade-libvirt-daemon-kvmoracle-linux-upgrade-libvirt-dbusoracle-linux-upgrade-libvirt-develoracle-linux-upgrade-libvirt-docsoracle-linux-upgrade-libvirt-libsoracle-linux-upgrade-libvirt-lock-sanlockoracle-linux-upgrade-libvirt-nssoracle-linux-upgrade-libvirt-wiresharkoracle-linux-upgrade-lua-guestfsoracle-linux-upgrade-nbdfuseoracle-linux-upgrade-nbdkitoracle-linux-upgrade-nbdkit-bash-completionoracle-linux-upgrade-nbdkit-basic-filtersoracle-linux-upgrade-nbdkit-basic-pluginsoracle-linux-upgrade-nbdkit-curl-pluginoracle-linux-upgrade-nbdkit-develoracle-linux-upgrade-nbdkit-example-pluginsoracle-linux-upgrade-nbdkit-gzip-filteroracle-linux-upgrade-nbdkit-gzip-pluginoracle-linux-upgrade-nbdkit-linuxdisk-pluginoracle-linux-upgrade-nbdkit-nbd-pluginoracle-linux-upgrade-nbdkit-python-pluginoracle-linux-upgrade-nbdkit-serveroracle-linux-upgrade-nbdkit-ssh-pluginoracle-linux-upgrade-nbdkit-tar-filteroracle-linux-upgrade-nbdkit-tar-pluginoracle-linux-upgrade-nbdkit-tmpdisk-pluginoracle-linux-upgrade-nbdkit-vddk-pluginoracle-linux-upgrade-nbdkit-xz-filteroracle-linux-upgrade-netcforacle-linux-upgrade-netcf-develoracle-linux-upgrade-netcf-libsoracle-linux-upgrade-ocaml-hivexoracle-linux-upgrade-ocaml-hivex-develoracle-linux-upgrade-ocaml-libguestfsoracle-linux-upgrade-ocaml-libguestfs-develoracle-linux-upgrade-ocaml-libnbdoracle-linux-upgrade-ocaml-libnbd-develoracle-linux-upgrade-perl-hivexoracle-linux-upgrade-perl-sys-guestfsoracle-linux-upgrade-perl-sys-virtoracle-linux-upgrade-python3-hivexoracle-linux-upgrade-python3-libguestfsoracle-linux-upgrade-python3-libnbdoracle-linux-upgrade-python3-libvirtoracle-linux-upgrade-qemu-guest-agentoracle-linux-upgrade-qemu-imgoracle-linux-upgrade-qemu-kvmoracle-linux-upgrade-qemu-kvm-block-curloracle-linux-upgrade-qemu-kvm-block-glusteroracle-linux-upgrade-qemu-kvm-block-iscsioracle-linux-upgrade-qemu-kvm-block-rbdoracle-linux-upgrade-qemu-kvm-block-sshoracle-linux-upgrade-qemu-kvm-commonoracle-linux-upgrade-qemu-kvm-coreoracle-linux-upgrade-qemu-kvm-docsoracle-linux-upgrade-qemu-kvm-hw-usbrediroracle-linux-upgrade-qemu-kvm-testsoracle-linux-upgrade-qemu-kvm-ui-opengloracle-linux-upgrade-qemu-kvm-ui-spiceoracle-linux-upgrade-ruby-hivexoracle-linux-upgrade-ruby-libguestfsoracle-linux-upgrade-seabiosoracle-linux-upgrade-seabios-binoracle-linux-upgrade-seavgabios-binoracle-linux-upgrade-sgabiosoracle-linux-upgrade-sgabios-binoracle-linux-upgrade-superminoracle-linux-upgrade-supermin-develoracle-linux-upgrade-swtpmoracle-linux-upgrade-swtpm-develoracle-linux-upgrade-swtpm-libsoracle-linux-upgrade-swtpm-toolsoracle-linux-upgrade-swtpm-tools-pkcs11oracle-linux-upgrade-virt-diboracle-linux-upgrade-virt-v2voracle-linux-upgrade-virt-v2v-bash-completionoracle-linux-upgrade-virt-v2v-man-pages-jaoracle-linux-upgrade-virt-v2v-man-pages-uk

NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.