Red Hat Security Advisory 2023-2757-01 - Kernel-based Virtual Machine offers a full virtualization solution for Linux on numerous hardware platforms. The virt:rhel module contains packages which provide user-space components used to run virtual machines using KVM. The packages also provide APIs for managing and interacting with the virtualized systems. Issues addressed include buffer overflow and memory leak vulnerabilities.
bc1c8d04cce1ebceddcd3daf4e0f4a2ff67d9d801623b91c0d97432d120d0102
Red Hat Security Advisory 2023-2179-01 - The libguestfs-winsupport package adds support for Windows guests to libguestfs, a set of tools and libraries allowing users to access and modify virtual machine disk images. Issues addressed include a buffer overflow vulnerability.
58cad884bf4e31576b45f7ea2bece9a881327818856ada437067889ab2271fe1
Debian Linux Security Advisory 5160-1 - Several vulnerabilities were discovered in NTFS-3G, a read-write NTFS driver for FUSE. A local user can take advantage of these flaws for local root privilege escalation.
fd5df599e9a2419df99e4181fc1ac456fd2742d2031a7d7fb96495c11bdd498f
Ubuntu Security Notice 5463-1 - It was discovered that NTFS-3G incorrectly handled the ntfsck tool. If a user or automated system were tricked into using ntfsck on a specially crafted disk image, a remote attacker could possibly use this issue to execute arbitrary code. Roman Fiedler discovered that NTFS-3G incorrectly handled certain return codes. A local attacker could possibly use this issue to intercept protocol traffic between FUSE and the kernel.
4d148171efede88e748de7cd3b3a79ab2fc64b62b7ceb59bf5a5473185daa9f8