A memory bounds-checking error in the Linux NTFS3 driver could lead to information disclosure or system crashes.

The flaw occurs in the DeleteIndexEntryRoot function within the NTFS3 driver, where the entry size (esize) is not properly validated against the log record length. An attacker providing a malicious NTFS filesystem could trigger this out-of-bounds read.

This vulnerability could be used to leak kernel memory or cause a denial-of-service. With a CVSS score of 7.8, it poses a risk to systems that mount untrusted NTFS-formatted storage media.

Immediate Action: Update the Linux kernel to the latest version containing the bounds-checking fix for the NTFS3 driver.

Proactive Monitoring: Monitor for kernel logs indicating slab out-of-bounds errors when interacting with external storage.

Compensating Controls: Avoid mounting NTFS filesystems from untrusted or unknown sources.

Public Exploit Available: false

We recommend applying the kernel patch promptly. For systems that do not require NTFS support, consider disabling the NTFS3 driver module to reduce the attack surface.