PT-2025-53105 · Ntfs3+2 · Ntfs3+2
Published
2022-09-30
·
Updated
2025-12-25
·
CVE-2022-50739
CVSS v2.0
4.3
Medium
| Vector | AV:A/AC:H/Au:S/C:N/I:N/A:C |
Name of the Vulnerable Software and Affected Versions
Linux kernel versions prior to 6.0.0-rc4
Description
The Linux kernel contains a flaw in the NTFS3 file system implementation. Specifically, a missing null pointer check for inode operations can lead to a kernel null pointer dereference when mounting an image with a malformed Root directory MFT record. This can result in a system crash.
Recommendations
Update to a version newer than 6.0.0-rc4.
Exploit
Fix
NULL Pointer Dereference
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Debian
Linux Kernel
Ntfs3