Linux Kernel Memory Leak Vulnerability in NTFS3 File System Handling

Vulnerability

A vulnerability in the Linux kernel's NTFS3 file system implementation has been addressed, which involved memory leaks occurring during error handling in the 'log_replay()' function. The issue arose because all error paths led to a common 'out' point where resources were properly freed, except for this particular path, causing leaks of several resources including 'log', 'ra', and 'log->one_page_buf'.

Impact

Exploitation of this vulnerability could lead to memory leaks, causing increased memory usage and potential degradation of system performance over time.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.6

exploitability

4.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

0.6

exploitability

4.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel Memory Leak Vulnerability in NTFS3 File System Handling

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating