CVE-2022-50262

Name of the Vulnerable Software and Affected Versions Linux kernel (affected versions not specified)

Description A flaw exists in the Linux kernel's NTFS3 implementation related to the validation of the BOOT record size field. When the record size field is negative, it's interpreted as a shift value, but lacks proper sanity checking. This can lead to a null pointer dereference (NPD) during the mounting of a malformed NTFS image. The issue manifests as a kernel panic, as indicated by the provided kernel logs.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.