Volerion logoVolerion
Volerion logoVolerion

Linux Kernel NTFS3 $Extend Record Handling Vulnerability

Vulnerability

A vulnerability exists in the Linux kernel's NTFS3 file system handling, specifically regarding the treatment of $Extend records. These records are incorrectly treated as regular files, which can lead to improper file system behavior. This issue affects several versions of the Linux kernel.

Impact

Exploitation of this vulnerability could cause the file system to misinterpret $Extend records, potentially leading to incorrect file handling or file system errors.

Reproduction

The vulnerability can be reproduced by accessing a NTFS3 file system that contains $Extend records. The kernel will incorrectly treat these records as regular files, which can be observed by checking the file type interpretation.

Remediation

Users can upgrade to the latest version of the Linux kernel where this vulnerability has been addressed.

Added: Dec 8, 2025, 1:31 AM
Updated: Dec 8, 2025, 1:31 AM

Vulnerability Rating

Custom Algorithm
spread
9.0
impact
0.0
exploitability
4.3
remediation
7.7
relevance
1.3
threat
4.8
urgency
2.9
incentive
1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.