Primary

Context

Linux Kernel NTFS3 Data Run Offset Validation Vulnerability Leading to Use-After-Free

Vulnerability

Patched

A use-after-free vulnerability has been identified in the Linux kernel's NTFS3 file system module. This issue arises because the data run offset is not properly validated before being processed, which can lead to unintended memory access and potential exploitation. The vulnerability has been observed in Linux kernel versions through 5.19.0.

Impact

Exploitation of this vulnerability causes a use-after-free condition, which can lead to arbitrary memory access and potentially allow for memory corruption or execution of arbitrary code.

Reproduction

The vulnerability can be reproduced by mounting an NTFS3 file system image that contains crafted attribute runs with invalid offsets. This can be done using a Linux kernel version that is vulnerable, such as one prior to the patch that addresses this issue.

Remediation

Users can upgrade to the latest stable version of the Linux kernel to address this vulnerability.

Added: Oct 4, 2025, 7:12 PM

Updated: Oct 4, 2025, 7:12 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.7

remediation

7.7

relevance

0.7

threat

4.8

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

5.7

remediation

7.7

relevance

0.7

threat

4.8

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel NTFS3 Data Run Offset Validation Vulnerability Leading to Use-After-Free

Vulnerability

Impact

Reproduction

Remediation

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating