CVE-2026-40706

CVSS v3.1

8.4

High

Vector

AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions NTFS-3G versions 2022.10.3 through 2026.2.24

Description A heap buffer overflow exists in the ntfs build permissions posix() function within acls.c. This issue allows an attacker to corrupt heap memory in the SUID-root ntfs-3g binary by using a specially crafted malicious NTFS image. The overflow occurs during the READ path (stat, readdir, open) when the system processes a security descriptor containing multiple ACCESS DENIED ACEs (Access Control Entries) that include WRITE OWNER from different group SIDs.

Recommendations Update to version 2026.2.25.

Fix

Heap Based Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-122

Related Identifiers

CVE-2026-40706

OESA-2026-2100

OESA-2026-2101

OESA-2026-2102

OESA-2026-2103

OESA-2026-2104

OPENSUSE-SU-2026:10614-1

SUSE-SU-2026:1571-1

USN-8192-1

USN-8192-2

Affected Products

Linuxmint

Ntfs-3G

Ubuntu

CVE-2026-40706

Weakness Enumeration

Related Identifiers

Affected Products

References · 37