Linux Kernel NTFS3 Inode Error Handling Vulnerability

Vulnerability

A vulnerability in the Linux kernel's NTFS3 file system handling has been addressed. The issue arose in the 'mi_enum_attr()' function, where an error could be detected but not immediately acted upon. The vulnerability has been resolved by modifying the function to include an additional parameter, allowing it to mark the inode as bad as soon as an error is identified.

Impact

The vulnerability could lead to improper error handling, allowing inodes to remain in a good state even after an error occurred, potentially causing data integrity issues.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

9.0

impact

2.5

exploitability

4.0

remediation

0.0

relevance

0.0

threat

3.2

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Linux Kernel NTFS3 Inode Error Handling Vulnerability

Vulnerability

Impact

Affected Products

Linux kernel

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating