CVE-2024-41018
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2024-41018
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-41018.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2024-41018
- Downstream
- Related
- Published
- 2024-07-29T06:37:04Z
- Modified
- 2025-10-15T13:02:47.791331Z
- Summary
- fs/ntfs3: Add a check for attr_names and oatbl
- Details
-
In the Linux kernel, the following vulnerability has been resolved:
fs/ntfs3: Add a check for attr_names and oatbl
Added out-of-bound checking for *ane (ATTRNAMEENTRY).
- References
-
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- https://git.kernel.org/stable/c/702d4930eb06dcfda85a2fa67e8a1a27bfa2a845
- https://git.kernel.org/stable/c/9b71f820f7168f1eab8378c80c7ea8a022a475bc
- https://git.kernel.org/stable/c/c114d2b88f8b226d4b2acf5a1ba0412cde6c31dd
- https://git.kernel.org/stable/c/f3124d51e4e7b56a732419d8dc270e807252334f
Affected packages
Git / git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
Affected ranges
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introducede0b64e4ad2eb013fd3299e34e7fe5e19f321e140Fixedf3124d51e4e7b56a732419d8dc270e807252334f
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced865e7a7700d930d34895a70f8af2eb4e778a5b0eFixedc114d2b88f8b226d4b2acf5a1ba0412cde6c31dd
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced865e7a7700d930d34895a70f8af2eb4e778a5b0eFixed9b71f820f7168f1eab8378c80c7ea8a022a475bc
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced865e7a7700d930d34895a70f8af2eb4e778a5b0eFixed702d4930eb06dcfda85a2fa67e8a1a27bfa2a845
- Type
- GIT
- Repo
- https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git
- Events
-
Introduced653687cca0fdbf426c078b46c377c57bee49e837
Affected versions
v5.*
v5.10.1
v5.10.10
v5.10.11
v5.10.12
v5.10.13
v5.10.14
v5.10.15
v5.10.16
v5.10.17
v5.10.18
v5.10.19
v5.10.2
v5.10.3
v5.10.4
v5.10.5
v5.10.6
v5.10.7
v5.10.8
v5.10.9
v5.11.1
v5.11.10
v5.11.11
v5.11.12
v5.11.13
v5.11.14
v5.11.15
v5.11.16
v5.11.17
v5.11.18
v5.11.19
v5.11.2
v5.11.20
v5.11.21
v5.11.3
v5.11.4
v5.11.5
v5.11.6
v5.11.7
v5.11.8
v5.11.9
v5.12.1
v5.12.10
v5.12.11
v5.12.12
v5.12.13
v5.12.14
v5.12.15
v5.12.16
v5.12.17
v5.12.18
v5.12.19
v5.12.2
v5.12.3
v5.12.4
v5.12.5
v5.12.6
v5.12.7
v5.12.8
v5.12.9
v5.13.1
v5.13.10
v5.13.11
v5.13.12
v5.13.13
v5.13.14
v5.13.15
v5.13.16
v5.13.17
v5.13.18
v5.13.2
v5.13.3
v5.13.4
v5.13.5
v5.13.6
v5.13.7
v5.13.8
v5.13.9
v5.14.1
v5.14.10
v5.14.11
v5.14.12
v5.14.13
v5.14.14
v5.14.15
v5.14.16
v5.14.17
v5.14.18
v5.14.19
v5.14.2
v5.14.20
v5.14.3
v5.14.4
v5.14.5
v5.14.6
v5.14.7
v5.14.8
v5.14.9
v5.15.1
v5.15.10
v5.15.11
v5.15.12
v5.15.13
v5.15.14
v5.15.15
v5.15.16
v5.15.17
v5.15.18
v5.15.19
v5.15.2
v5.15.3
v5.15.4
v5.15.5
v5.15.6
v5.15.7
v5.15.8
v5.15.9
v5.16.1
v5.16.10
v5.16.11
v5.16.12
v5.16.13
v5.16.14
v5.16.15
v5.16.16
v5.16.17
v5.16.18
v5.16.19
v5.16.2
v5.16.20
v5.16.3
v5.16.4
v5.16.5
v5.16.6
v5.16.7
v5.16.8
v5.16.9
v5.17.1
v5.17.10
v5.17.11
v5.17.12
v5.17.13
v5.17.14
v5.17.2
v5.17.3
v5.17.4
v5.17.5
v5.17.6
v5.17.7
v5.17.8
v5.17.9
v5.18.1
v5.18.10
v5.18.11
v5.18.12
v5.18.13
v5.18.14
v5.18.15
v5.18.16
v5.18.17
v5.18.18
v5.18.19
v5.18.2
v5.18.3
v5.18.4
v5.18.5
v5.18.6
v5.18.7
v5.18.8
v5.18.9
v5.19.1
v5.19.10
v5.19.11
v5.19.12
v5.19.13
v5.19.14
v5.19.15
v5.19.16
v5.19.2
v5.19.3
v5.19.4
v5.19.5
v5.19.6
v5.19.7
v5.19.8
v5.19.9
v5.6.1
v5.6.10
v5.6.11
v5.6.12
v5.6.13
v5.6.14
v5.6.15
v5.6.16
v5.6.17
v5.6.18
v5.6.2
v5.6.3
v5.6.4
v5.6.5
v5.6.6
v5.6.7
v5.6.8
v5.6.9
v5.7.1
v5.7.10
v5.7.11
v5.7.12
v5.7.13
v5.7.14
v5.7.15
v5.7.16
v5.7.2
v5.7.3
v5.7.4
v5.7.5
v5.7.6
v5.7.7
v5.7.8
v5.7.9
v5.8.1
v5.8.10
v5.8.11
v5.8.12
v5.8.13
v5.8.14
v5.8.15
v5.8.16
v5.8.17
v5.8.18
v5.8.2
v5.8.3
v5.8.4
v5.8.5
v5.8.6
v5.8.7
v5.8.8
v5.8.9
v5.9.1
v5.9.10
v5.9.11
v5.9.12
v5.9.13
v5.9.14
v5.9.15
v5.9.16
v5.9.2
v5.9.3
v5.9.4
v5.9.5
v5.9.6
v5.9.7
v5.9.8
v5.9.9
v6.*
v6.0.1
v6.0.10
v6.0.11
v6.0.12
v6.0.13
v6.0.14
v6.0.15
v6.0.16
v6.0.17
v6.0.18
v6.0.2
v6.0.3
v6.0.4
v6.0.5
v6.0.6
v6.0.7
v6.0.8
v6.0.9
v6.1.1
v6.1.10
v6.1.11
v6.1.12
v6.1.13
v6.1.14
v6.1.15
v6.1.2
v6.1.3
v6.1.4
v6.1.5
v6.1.6
v6.1.7
v6.1.8
v6.1.9
v6.10
v6.10-rc1
v6.10-rc2
v6.10-rc3
v6.10-rc4
v6.10-rc5
v6.10-rc6
v6.10-rc7
v6.10.1
v6.10.10
v6.10.11
v6.10.12
v6.10.13
v6.10.2
v6.10.3
v6.10.4
v6.10.5
v6.10.6
v6.10.7
v6.10.8
v6.10.9
v6.11
v6.11-rc1
v6.11-rc2
v6.11-rc3
v6.11-rc4
v6.11-rc5
v6.11-rc6
v6.11-rc7
v6.11.1
v6.11.10
v6.11.11
v6.11.2
v6.11.3
v6.11.4
v6.11.5
v6.11.6
v6.11.7
v6.11.8
v6.11.9
v6.12
v6.12-rc1
v6.12-rc2
v6.12-rc3
v6.12-rc4
v6.12-rc5
v6.12-rc6
v6.12-rc7
v6.12.1
v6.12.10
v6.12.11
v6.12.12
v6.12.13
v6.12.14
v6.12.2
v6.12.3
v6.12.4
v6.12.5
v6.12.6
v6.12.7
v6.12.8
v6.12.9
v6.13
v6.13-rc1
v6.13-rc2
v6.13-rc3
v6.13-rc4
v6.13-rc5
v6.13-rc6
v6.13-rc7
v6.13.1
v6.13.10
v6.13.11
v6.13.12
v6.13.2
v6.13.3
v6.13.4
v6.13.5
v6.13.6
v6.13.7
v6.13.8
v6.13.9
v6.14
v6.14-rc1
v6.14-rc2
v6.14-rc3
v6.14-rc4
v6.14-rc5
v6.14-rc6
v6.14-rc7
v6.14.1
v6.14.10
v6.14.11
v6.14.2
v6.14.3
v6.14.4
v6.14.5
v6.14.6
v6.14.7
v6.14.8
v6.14.9
v6.15
v6.15-rc1
v6.15-rc2
v6.15-rc3
v6.15-rc4
v6.15-rc5
v6.15-rc6
v6.15-rc7
v6.15.1
v6.15.10
v6.15.11
v6.15.2
v6.15.3
v6.15.4
v6.15.5
v6.15.6
v6.15.7
v6.15.8
v6.15.9
v6.16
v6.16-rc1
v6.16-rc2
v6.16-rc3
v6.16-rc4
v6.16-rc5
v6.16-rc6
v6.16-rc7
v6.16.1
v6.16.10
v6.16.11
v6.16.12
v6.16.2
v6.16.3
v6.16.4
v6.16.5
v6.16.6
v6.16.7
v6.16.8
v6.16.9
v6.17
v6.17-rc1
v6.17-rc2
v6.17-rc3
v6.17-rc4
v6.17-rc5
v6.17-rc6
v6.17-rc7
v6.17.1
v6.17.2
v6.17.3
v6.2.1
v6.2.10
v6.2.11
v6.2.12
v6.2.13
v6.2.14
v6.2.15
v6.2.2
v6.2.3
v6.2.4
v6.2.5
v6.2.6
v6.2.7
v6.2.8
v6.2.9
v6.3.1
v6.3.10
v6.3.11
v6.3.12
v6.3.2
v6.3.3
v6.3.4
v6.3.5
v6.3.6
v6.3.7
v6.3.8
v6.3.9
v6.4.1
v6.4.10
v6.4.11
v6.4.12
v6.4.13
v6.4.14
v6.4.15
v6.4.16
v6.4.2
v6.4.3
v6.4.4
v6.4.5
v6.4.6
v6.4.7
v6.4.8
v6.4.9
v6.5.1
v6.5.10
v6.5.11
v6.5.12
v6.5.13
v6.5.2
v6.5.3
v6.5.4
v6.5.5
v6.5.6
v6.5.7
v6.5.8
v6.5.9
v6.6.1
v6.6.10
v6.6.11
v6.6.12
v6.6.13
v6.6.14
v6.6.19
v6.6.2
v6.6.20
v6.6.21
v6.6.22
v6.6.23
v6.6.24
v6.6.25
v6.6.26
v6.6.27
v6.6.28
v6.6.29
v6.6.3
v6.6.30
v6.6.31
v6.6.32
v6.6.33
v6.6.34
v6.6.35
v6.6.36
v6.6.37
v6.6.38
v6.6.39
v6.6.4
v6.6.40
v6.6.41
v6.6.42
v6.6.5
v6.6.6
v6.6.7
v6.6.8
v6.6.9
v6.7
v6.7-rc5
v6.7-rc6
v6.7-rc7
v6.7-rc8
v6.7.10
v6.7.11
v6.7.12
v6.7.7
v6.7.8
v6.7.9
v6.8
v6.8-rc1
v6.8-rc2
v6.8-rc3
v6.8-rc4
v6.8-rc5
v6.8-rc6
v6.8-rc7
v6.8.1
v6.8.10
v6.8.11
v6.8.2
v6.8.3
v6.8.4
v6.8.5
v6.8.6
v6.8.7
v6.8.8
v6.8.9
v6.9
v6.9-rc1
v6.9-rc2
v6.9-rc3
v6.9-rc4
v6.9-rc5
v6.9-rc6
v6.9-rc7
v6.9.1
v6.9.10
v6.9.11
v6.9.12
v6.9.2
v6.9.3
v6.9.4
v6.9.5
v6.9.6
v6.9.7
v6.9.8
v6.9.9
Database specific
{
"vanir_signatures": [
{
"id": "CVE-2024-41018-7d5400f2",
"signature_type": "Line",
"target": {
"file": "fs/ntfs3/fslog.c"
},
"signature_version": "v1",
"digest": {
"line_hashes": [
"179472384050922231792895135370418749577",
"191048240528540036074961138520018068412",
"118817933485893741328550937555691787203",
"128547303583473244256859614490879138488",
"142979414513189029620585346978355417514",
"339061273099202062754848863774623043389",
"53046185617205424920300966143962765755",
"12908483790821185038347742613706372741",
"92519601973305381143233993958823900091",
"258226268003425399709058359422672410354",
"320669515991736560628014815362034882972",
"141502174093210867279145431865370822124",
"46170839315770090032683989000137678244",
"100004079882293180734030470907561435342",
"53931407511425522069066025296953891731",
"236517267823261185986043544227208500771",
"28467278509498182614214778228298236709",
"331089702924585023509668163433257795525",
"178149994017313565991717029780622743724",
"333668561959016441785171345144536062356",
"81362473776843615388069728267713796551"
],
"threshold": 0.9
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@f3124d51e4e7b56a732419d8dc270e807252334f"
},
{
"id": "CVE-2024-41018-9466d58b",
"signature_type": "Function",
"target": {
"file": "fs/ntfs3/fslog.c",
"function": "log_replay"
},
"signature_version": "v1",
"digest": {
"length": 28069.0,
"function_hash": "296391150856073472859122270969949772377"
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@f3124d51e4e7b56a732419d8dc270e807252334f"
},
{
"id": "CVE-2024-41018-aca7b345",
"signature_type": "Line",
"target": {
"file": "fs/ntfs3/fslog.c"
},
"signature_version": "v1",
"digest": {
"line_hashes": [
"179472384050922231792895135370418749577",
"191048240528540036074961138520018068412",
"118817933485893741328550937555691787203",
"128547303583473244256859614490879138488",
"142979414513189029620585346978355417514",
"339061273099202062754848863774623043389",
"53046185617205424920300966143962765755",
"12908483790821185038347742613706372741",
"92519601973305381143233993958823900091",
"258226268003425399709058359422672410354",
"320669515991736560628014815362034882972",
"141502174093210867279145431865370822124",
"46170839315770090032683989000137678244",
"100004079882293180734030470907561435342",
"53931407511425522069066025296953891731",
"236517267823261185986043544227208500771",
"28467278509498182614214778228298236709",
"331089702924585023509668163433257795525",
"178149994017313565991717029780622743724",
"333668561959016441785171345144536062356",
"81362473776843615388069728267713796551"
],
"threshold": 0.9
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@9b71f820f7168f1eab8378c80c7ea8a022a475bc"
},
{
"id": "CVE-2024-41018-b8077b51",
"signature_type": "Function",
"target": {
"file": "fs/ntfs3/fslog.c",
"function": "log_replay"
},
"signature_version": "v1",
"digest": {
"length": 28069.0,
"function_hash": "296391150856073472859122270969949772377"
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@9b71f820f7168f1eab8378c80c7ea8a022a475bc"
},
{
"id": "CVE-2024-41018-d29b1eed",
"signature_type": "Line",
"target": {
"file": "fs/ntfs3/fslog.c"
},
"signature_version": "v1",
"digest": {
"line_hashes": [
"179472384050922231792895135370418749577",
"191048240528540036074961138520018068412",
"118817933485893741328550937555691787203",
"128547303583473244256859614490879138488",
"142979414513189029620585346978355417514",
"339061273099202062754848863774623043389",
"53046185617205424920300966143962765755",
"12908483790821185038347742613706372741",
"92519601973305381143233993958823900091",
"258226268003425399709058359422672410354",
"320669515991736560628014815362034882972",
"141502174093210867279145431865370822124",
"46170839315770090032683989000137678244",
"100004079882293180734030470907561435342",
"53931407511425522069066025296953891731",
"236517267823261185986043544227208500771",
"28467278509498182614214778228298236709",
"331089702924585023509668163433257795525",
"178149994017313565991717029780622743724",
"333668561959016441785171345144536062356",
"81362473776843615388069728267713796551"
],
"threshold": 0.9
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@702d4930eb06dcfda85a2fa67e8a1a27bfa2a845"
},
{
"id": "CVE-2024-41018-db160acf",
"signature_type": "Function",
"target": {
"file": "fs/ntfs3/fslog.c",
"function": "log_replay"
},
"signature_version": "v1",
"digest": {
"length": 28069.0,
"function_hash": "296391150856073472859122270969949772377"
},
"deprecated": false,
"source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@702d4930eb06dcfda85a2fa67e8a1a27bfa2a845"
}
]
}