Recent Vulnerabilities Research Posts Trends Blog About Contact

Related Vulnerabilities: CVE-2019-9755

An integer underflow issue exists in ntfs-3g 2017.3.23. A local attacker could potentially exploit this by running /bin/ntfs-3g with specially crafted arguments from a specially crafted directory to cause a heap buffer overflow, resulting in a crash or the ability to execute arbitrary code. In installations where /bin/ntfs-3g is a setuid-root binary, this could lead to a local escalation of privileges. (CVE-2019-9755)

Source

ALAS2-2020-1522

Amazon Linux 2 Security Advisory: ALAS-2020-1522
Advisory Release Date: 2020-10-22 18:11 Pacific
Advisory Updated Date: 2020-10-22 22:35 Pacific

Severity: Low

References: CVE-2019-9755

Issue Overview:

An integer underflow issue exists in ntfs-3g 2017.3.23. A local attacker could potentially exploit this by running /bin/ntfs-3g with specially crafted arguments from a specially crafted directory to cause a heap buffer overflow, resulting in a crash or the ability to execute arbitrary code. In installations where /bin/ntfs-3g is a setuid-root binary, this could lead to a local escalation of privileges. (CVE-2019-9755)

Affected Packages:

libguestfs-winsupport

Issue Correction:
Run yum update libguestfs-winsupport to update your system.

New Packages:

aarch64:
    libguestfs-winsupport-7.2-3.amzn2.aarch64

src:
    libguestfs-winsupport-7.2-3.amzn2.src

x86_64:
    libguestfs-winsupport-7.2-3.amzn2.x86_64

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

ALAS2-2020-1522

ALAS2-2020-1522

Vulmon Search

About

Products

Connect