vulnerability
Oracle Linux: CVE-2021-39263: ELSA-2022-1759: virt:ol and virt-devel:ol security, bug fix, and enhancement update (MODERATE) (Multiple Advisories)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 7 | (AV:L/AC:L/Au:S/C:C/I:C/A:C) | 2021-08-30 | 2022-05-18 | 2024-12-06 |
Severity
7
CVSS
(AV:L/AC:L/Au:S/C:C/I:C/A:C)
Published
2021-08-30
Added
2022-05-18
Modified
2024-12-06
Description
A crafted NTFS image can trigger a heap-based buffer overflow, caused by an unsanitized attribute in ntfs_get_attribute_value, in NTFS-3G < 2021.8.22.
The ntfs3g package is susceptible to a heap overflow on crafted input. When processing an NTFS image, proper bounds checking was not enforced leading to this software flaw. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability.
The ntfs3g package is susceptible to a heap overflow on crafted input. When processing an NTFS image, proper bounds checking was not enforced leading to this software flaw. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability.
Solution(s)
oracle-linux-upgrade-hivexoracle-linux-upgrade-hivex-develoracle-linux-upgrade-libguestfsoracle-linux-upgrade-libguestfs-applianceoracle-linux-upgrade-libguestfs-bash-completionoracle-linux-upgrade-libguestfs-develoracle-linux-upgrade-libguestfs-gfs2oracle-linux-upgrade-libguestfs-gobjectoracle-linux-upgrade-libguestfs-gobject-develoracle-linux-upgrade-libguestfs-inspect-iconsoracle-linux-upgrade-libguestfs-javaoracle-linux-upgrade-libguestfs-java-develoracle-linux-upgrade-libguestfs-javadocoracle-linux-upgrade-libguestfs-man-pages-jaoracle-linux-upgrade-libguestfs-man-pages-ukoracle-linux-upgrade-libguestfs-rescueoracle-linux-upgrade-libguestfs-rsyncoracle-linux-upgrade-libguestfs-toolsoracle-linux-upgrade-libguestfs-tools-coracle-linux-upgrade-libguestfs-winsupportoracle-linux-upgrade-libguestfs-xfsoracle-linux-upgrade-libiscsioracle-linux-upgrade-libiscsi-develoracle-linux-upgrade-libiscsi-utilsoracle-linux-upgrade-libnbdoracle-linux-upgrade-libnbd-bash-completionoracle-linux-upgrade-libnbd-develoracle-linux-upgrade-libtpmsoracle-linux-upgrade-libtpms-develoracle-linux-upgrade-libvirtoracle-linux-upgrade-libvirt-clientoracle-linux-upgrade-libvirt-daemonoracle-linux-upgrade-libvirt-daemon-config-networkoracle-linux-upgrade-libvirt-daemon-config-nwfilteroracle-linux-upgrade-libvirt-daemon-driver-interfaceoracle-linux-upgrade-libvirt-daemon-driver-networkoracle-linux-upgrade-libvirt-daemon-driver-nodedevoracle-linux-upgrade-libvirt-daemon-driver-nwfilteroracle-linux-upgrade-libvirt-daemon-driver-qemuoracle-linux-upgrade-libvirt-daemon-driver-secretoracle-linux-upgrade-libvirt-daemon-driver-storageoracle-linux-upgrade-libvirt-daemon-driver-storage-coreoracle-linux-upgrade-libvirt-daemon-driver-storage-diskoracle-linux-upgrade-libvirt-daemon-driver-storage-glusteroracle-linux-upgrade-libvirt-daemon-driver-storage-iscsioracle-linux-upgrade-libvirt-daemon-driver-storage-iscsi-directoracle-linux-upgrade-libvirt-daemon-driver-storage-logicaloracle-linux-upgrade-libvirt-daemon-driver-storage-mpathoracle-linux-upgrade-libvirt-daemon-driver-storage-rbdoracle-linux-upgrade-libvirt-daemon-driver-storage-scsioracle-linux-upgrade-libvirt-daemon-kvmoracle-linux-upgrade-libvirt-dbusoracle-linux-upgrade-libvirt-develoracle-linux-upgrade-libvirt-docsoracle-linux-upgrade-libvirt-libsoracle-linux-upgrade-libvirt-lock-sanlockoracle-linux-upgrade-libvirt-nssoracle-linux-upgrade-libvirt-wiresharkoracle-linux-upgrade-lua-guestfsoracle-linux-upgrade-nbdfuseoracle-linux-upgrade-nbdkitoracle-linux-upgrade-nbdkit-bash-completionoracle-linux-upgrade-nbdkit-basic-filtersoracle-linux-upgrade-nbdkit-basic-pluginsoracle-linux-upgrade-nbdkit-curl-pluginoracle-linux-upgrade-nbdkit-develoracle-linux-upgrade-nbdkit-example-pluginsoracle-linux-upgrade-nbdkit-gzip-filteroracle-linux-upgrade-nbdkit-gzip-pluginoracle-linux-upgrade-nbdkit-linuxdisk-pluginoracle-linux-upgrade-nbdkit-nbd-pluginoracle-linux-upgrade-nbdkit-python-pluginoracle-linux-upgrade-nbdkit-serveroracle-linux-upgrade-nbdkit-ssh-pluginoracle-linux-upgrade-nbdkit-tar-filteroracle-linux-upgrade-nbdkit-tar-pluginoracle-linux-upgrade-nbdkit-tmpdisk-pluginoracle-linux-upgrade-nbdkit-vddk-pluginoracle-linux-upgrade-nbdkit-xz-filteroracle-linux-upgrade-netcforacle-linux-upgrade-netcf-develoracle-linux-upgrade-netcf-libsoracle-linux-upgrade-ocaml-hivexoracle-linux-upgrade-ocaml-hivex-develoracle-linux-upgrade-ocaml-libguestfsoracle-linux-upgrade-ocaml-libguestfs-develoracle-linux-upgrade-ocaml-libnbdoracle-linux-upgrade-ocaml-libnbd-develoracle-linux-upgrade-perl-hivexoracle-linux-upgrade-perl-sys-guestfsoracle-linux-upgrade-perl-sys-virtoracle-linux-upgrade-python3-hivexoracle-linux-upgrade-python3-libguestfsoracle-linux-upgrade-python3-libnbdoracle-linux-upgrade-python3-libvirtoracle-linux-upgrade-qemu-guest-agentoracle-linux-upgrade-qemu-imgoracle-linux-upgrade-qemu-kvmoracle-linux-upgrade-qemu-kvm-block-curloracle-linux-upgrade-qemu-kvm-block-glusteroracle-linux-upgrade-qemu-kvm-block-iscsioracle-linux-upgrade-qemu-kvm-block-rbdoracle-linux-upgrade-qemu-kvm-block-sshoracle-linux-upgrade-qemu-kvm-commonoracle-linux-upgrade-qemu-kvm-coreoracle-linux-upgrade-qemu-kvm-docsoracle-linux-upgrade-qemu-kvm-hw-usbrediroracle-linux-upgrade-qemu-kvm-testsoracle-linux-upgrade-qemu-kvm-ui-opengloracle-linux-upgrade-qemu-kvm-ui-spiceoracle-linux-upgrade-ruby-hivexoracle-linux-upgrade-ruby-libguestfsoracle-linux-upgrade-seabiosoracle-linux-upgrade-seabios-binoracle-linux-upgrade-seavgabios-binoracle-linux-upgrade-sgabiosoracle-linux-upgrade-sgabios-binoracle-linux-upgrade-superminoracle-linux-upgrade-supermin-develoracle-linux-upgrade-swtpmoracle-linux-upgrade-swtpm-develoracle-linux-upgrade-swtpm-libsoracle-linux-upgrade-swtpm-toolsoracle-linux-upgrade-swtpm-tools-pkcs11oracle-linux-upgrade-virt-diboracle-linux-upgrade-virt-v2voracle-linux-upgrade-virt-v2v-bash-completionoracle-linux-upgrade-virt-v2v-man-pages-jaoracle-linux-upgrade-virt-v2v-man-pages-uk
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.