Advisories » MGASA-2022-0408

Updated ntfs-3g packages fix security vulnerability

Publication date: 04 Nov 2022
Type: security
Affected Mageia releases : 8
CVE: CVE-2022-40284

Description

NTFS-3G could be made to crash or run programs as an administrator if it
mounted a specially crafted disk. (CVE-2022-40284)
                

References

• https://bugs.mageia.org/show_bug.cgi?id=31056
• https://www.openwall.com/lists/oss-security/2022/10/31/2
• https://github.com/tuxera/ntfs-3g/releases/tag/2022.10.3
• https://ubuntu.com/security/notices/USN-5711-1
• https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-40284

SRPMS

8/core

• ntfs-3g-2021.8.22-1.2.mga8