In the Linux kernel, the following vulnerability has been resolved:
fs/ntfs3: Add a check for attr_names and oatbl
Added out-of-bound checking for *ane (ATTRNAMEENTRY).
{ "vanir_signatures": [ { "id": "CVE-2024-41018-7d5400f2", "signature_type": "Line", "target": { "file": "fs/ntfs3/fslog.c" }, "signature_version": "v1", "digest": { "line_hashes": [ "179472384050922231792895135370418749577", "191048240528540036074961138520018068412", "118817933485893741328550937555691787203", "128547303583473244256859614490879138488", "142979414513189029620585346978355417514", "339061273099202062754848863774623043389", "53046185617205424920300966143962765755", "12908483790821185038347742613706372741", "92519601973305381143233993958823900091", "258226268003425399709058359422672410354", "320669515991736560628014815362034882972", "141502174093210867279145431865370822124", "46170839315770090032683989000137678244", "100004079882293180734030470907561435342", "53931407511425522069066025296953891731", "236517267823261185986043544227208500771", "28467278509498182614214778228298236709", "331089702924585023509668163433257795525", "178149994017313565991717029780622743724", "333668561959016441785171345144536062356", "81362473776843615388069728267713796551" ], "threshold": 0.9 }, "deprecated": false, "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@f3124d51e4e7b56a732419d8dc270e807252334f" }, { "id": "CVE-2024-41018-9466d58b", "signature_type": "Function", "target": { "file": "fs/ntfs3/fslog.c", "function": "log_replay" }, "signature_version": "v1", "digest": { "length": 28069.0, "function_hash": "296391150856073472859122270969949772377" }, "deprecated": false, "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@f3124d51e4e7b56a732419d8dc270e807252334f" }, { "id": "CVE-2024-41018-aca7b345", "signature_type": "Line", "target": { "file": "fs/ntfs3/fslog.c" }, "signature_version": "v1", "digest": { "line_hashes": [ "179472384050922231792895135370418749577", "191048240528540036074961138520018068412", "118817933485893741328550937555691787203", "128547303583473244256859614490879138488", "142979414513189029620585346978355417514", "339061273099202062754848863774623043389", "53046185617205424920300966143962765755", "12908483790821185038347742613706372741", "92519601973305381143233993958823900091", "258226268003425399709058359422672410354", "320669515991736560628014815362034882972", "141502174093210867279145431865370822124", "46170839315770090032683989000137678244", "100004079882293180734030470907561435342", "53931407511425522069066025296953891731", "236517267823261185986043544227208500771", "28467278509498182614214778228298236709", "331089702924585023509668163433257795525", "178149994017313565991717029780622743724", "333668561959016441785171345144536062356", "81362473776843615388069728267713796551" ], "threshold": 0.9 }, "deprecated": false, "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@9b71f820f7168f1eab8378c80c7ea8a022a475bc" }, { "id": "CVE-2024-41018-b8077b51", "signature_type": "Function", "target": { "file": "fs/ntfs3/fslog.c", "function": "log_replay" }, "signature_version": "v1", "digest": { "length": 28069.0, "function_hash": "296391150856073472859122270969949772377" }, "deprecated": false, "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@9b71f820f7168f1eab8378c80c7ea8a022a475bc" }, { "id": "CVE-2024-41018-d29b1eed", "signature_type": "Line", "target": { "file": "fs/ntfs3/fslog.c" }, "signature_version": "v1", "digest": { "line_hashes": [ "179472384050922231792895135370418749577", "191048240528540036074961138520018068412", "118817933485893741328550937555691787203", "128547303583473244256859614490879138488", "142979414513189029620585346978355417514", "339061273099202062754848863774623043389", "53046185617205424920300966143962765755", "12908483790821185038347742613706372741", "92519601973305381143233993958823900091", "258226268003425399709058359422672410354", "320669515991736560628014815362034882972", "141502174093210867279145431865370822124", "46170839315770090032683989000137678244", "100004079882293180734030470907561435342", "53931407511425522069066025296953891731", "236517267823261185986043544227208500771", "28467278509498182614214778228298236709", "331089702924585023509668163433257795525", "178149994017313565991717029780622743724", "333668561959016441785171345144536062356", "81362473776843615388069728267713796551" ], "threshold": 0.9 }, "deprecated": false, "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@702d4930eb06dcfda85a2fa67e8a1a27bfa2a845" }, { "id": "CVE-2024-41018-db160acf", "signature_type": "Function", "target": { "file": "fs/ntfs3/fslog.c", "function": "log_replay" }, "signature_version": "v1", "digest": { "length": 28069.0, "function_hash": "296391150856073472859122270969949772377" }, "deprecated": false, "source": "https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux.git@702d4930eb06dcfda85a2fa67e8a1a27bfa2a845" } ] }