A crafted NTFS image can trigger an out-of-bounds access, caused by an unsanitized attribute length in ntfsinodelookupbyname, in NTFS-3G < 2021.8.22.
{ "urgency": "not yet assigned" }