Akshay Ajayan

**Name of the Vulnerable Software and Affected Versions** Linux kernel (affected versions not specified) **Description** An out-of-bounds memory access flaw was found in the Linux kernel’s XFS file system, specifically in how a user restores an XFS image after failure with a dirty log journal. This issue allows a local user to crash or potentially escalate their privileges on the system. The flaw is related to insufficient metadata control when mounting XFS images, particularly in the `xlog recover buf commit pass2()` function within the `fs/xfs/xfs buf item recover.c` module. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** NTFS-3G versions prior to 2021.8.22 **Description** The issue is related to the implementation of the ntfs get attribute value function in the NTFS-3G file system driver. It is caused by an out-of-bound buffer access due to a missing consistency check after reading an MFT record, where the `bytes in use` field should be less than the `bytes allocated` field. This can lead to a heap buffer overflow, allowing for memory disclosure or denial of service when a specially crafted NTFS attribute is supplied to the function. The vulnerability can be triggered by mounting a crafted NTFS partition. **Recommendations** For NTFS-3G versions prior to 2021.8.22, update to version 2021.8.22 or later to resolve the issue. As a temporary workaround, consider restricting access to the ntfs get attribute value function until a patch is available. Avoid mounting crafted NTFS partitions to minimize the risk of exploitation.