CVE-2023-52890
Publication date 13 June 2024
Last updated 24 July 2024
Ubuntu priority
NTFS-3G before 75dcdc2 has a use-after-free in ntfs_uppercase_mbs in libntfs-3g/unistr.c. NOTE: discussion suggests that exploitation would be challenging.
Read the notes from the security team
Why is this CVE low priority?
Exploitation of this vulnerability likely difficult
Status
Package | Ubuntu Release | Status |
---|---|---|
ntfs-3g | 24.10 oracular |
Vulnerable
|
24.04 LTS noble |
Vulnerable
|
|
22.04 LTS jammy |
Vulnerable
|
|
20.04 LTS focal |
Vulnerable
|
|
18.04 LTS bionic |
Vulnerable
|
|
16.04 LTS xenial |
Vulnerable
|
|
14.04 LTS trusty | Ignored end of ESM support, was needed |
Notes
mdeslaur
Exploitation of this vulnerability likely difficult, see upstream bug discussion. As such, marking as low priority.