Muzothandizira za ntfs-3g zochokera ku NTFS-3G suite, zomwe zimapereka mwayi wogwiritsa ntchito mafayilo amtundu wa NTFS, chiwopsezo cha CVE-2022-40284 chadziwika, chomwe chimalola kuti code ichitidwe ndi ufulu wa mizu mudongosolo kuyika gawo lopangidwa mwapadera. Kusatetezeka kumathetsedwa mu NTFS-3G kumasulidwa 2022.10.3.
Chiwopsezochi chimayamba chifukwa cha zolakwika mu code yogawa metadata mu magawo a NTFS, zomwe zimatsogolera ku kusefukira kwa buffer pokonza zithunzi ndi fayilo ya NTFS yopangidwa mwanjira inayake. Kuwukirako kumatha kuchitika pomwe wogwiritsa ntchito akweza chithunzi kapena galimoto yokonzedwa ndi wowukirayo, kapena polumikiza USB Flash yokhala ndi gawo lopangidwa mwapadera pakompyuta (ngati makinawo adakonzedwa kuti azingoyika magawo a NTFS pogwiritsa ntchito NTFS-3G). Zochita zogwirira ntchito pachiwopsezozi sizinawonetsedwebe.
Source: opennet.ru