[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2022-49763":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T08:53:30.047Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":20,"aliases":21,"duplicate_of":9,"upstream":22,"downstream":23,"duplicates":32,"related":33,"reserved_at":9,"published_at":36,"modified_at":37,"state":38,"summary":39,"references_raw":48,"kevs":83,"epss":84,"epss_history":87,"metrics":358,"affected":364},"CVE-2022-49763","In the Linux kernel, the following vulnerability has been resolved:\n\nntfs: fix use-after-free in ntfs_attr_find()\n\nPatch series \"ntfs: fix bugs about Attribute\", v2.\n\nThis patchset fixes three bugs relative to Attribute in record:\n\nPatch 1 adds a sanity check to ensure that, attrs_offset field in first\nmft record loading from disk is within bounds.\n\nPatch 2 moves the ATTR_RECORD's bounds checking earlier, to avoid\ndereferencing ATTR_RECORD before checking this ATTR_RECORD is within\nbounds.\n\nPatch 3 adds an overflow checking to avoid possible forever loop in\nntfs_attr_find().\n\nWithout patch 1 and patch 2, the kernel triggersa KASAN use-after-free\ndetection as reported by Syzkaller.\n\nAlthough one of patch 1 or patch 2 can fix this, we still need both of\nthem.  Because patch 1 fixes the root cause, and patch 2 not only fixes\nthe direct cause, but also fixes the potential out-of-bounds bug.\n\n\nThis patch (of 3):\n\nSyzkaller reported use-after-free read as follows:\n==================================================================\nBUG: KASAN: use-after-free in ntfs_attr_find+0xc02/0xce0 fs/ntfs/attrib.c:597\nRead of size 2 at addr ffff88807e352009 by task syz-executor153/3607\n\n[...]\nCall Trace:\n \u003CTASK>\n __dump_stack lib/dump_stack.c:88 [inline]\n dump_stack_lvl+0xcd/0x134 lib/dump_stack.c:106\n print_address_description mm/kasan/report.c:317 [inline]\n print_report.cold+0x2ba/0x719 mm/kasan/report.c:433\n kasan_report+0xb1/0x1e0 mm/kasan/report.c:495\n ntfs_attr_find+0xc02/0xce0 fs/ntfs/attrib.c:597\n ntfs_attr_lookup+0x1056/0x2070 fs/ntfs/attrib.c:1193\n ntfs_read_inode_mount+0x89a/0x2580 fs/ntfs/inode.c:1845\n ntfs_fill_super+0x1799/0x9320 fs/ntfs/super.c:2854\n mount_bdev+0x34d/0x410 fs/super.c:1400\n legacy_get_tree+0x105/0x220 fs/fs_context.c:610\n vfs_get_tree+0x89/0x2f0 fs/super.c:1530\n do_new_mount fs/namespace.c:3040 [inline]\n path_mount+0x1326/0x1e20 fs/namespace.c:3370\n do_mount fs/namespace.c:3383 [inline]\n __do_sys_mount fs/namespace.c:3591 [inline]\n __se_sys_mount fs/namespace.c:3568 [inline]\n __x64_sys_mount+0x27f/0x300 fs/namespace.c:3568\n do_syscall_x64 arch/x86/entry/common.c:50 [inline]\n do_syscall_64+0x35/0xb0 arch/x86/entry/common.c:80\n entry_SYSCALL_64_after_hwframe+0x63/0xcd\n [...]\n \u003C/TASK>\n\nThe buggy address belongs to the physical page:\npage:ffffea0001f8d400 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x7e350\nhead:ffffea0001f8d400 order:3 compound_mapcount:0 compound_pincount:0\nflags: 0xfff00000010200(slab|head|node=0|zone=1|lastcpupid=0x7ff)\nraw: 00fff00000010200 0000000000000000 dead000000000122 ffff888011842140\nraw: 0000000000000000 0000000000040004 00000001ffffffff 0000000000000000\npage dumped because: kasan: bad access detected\nMemory state around the buggy address:\n ffff88807e351f00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc\n ffff88807e351f80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc\n>ffff88807e352000: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb\n                      ^\n ffff88807e352080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb\n ffff88807e352100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb\n==================================================================\n\nKernel will loads $MFT/$DATA's first mft record in\nntfs_read_inode_mount().\n\nYet the problem is that after loading, kernel doesn't check whether\nattrs_offset field is a valid value.\n\nTo be more specific, if attrs_offset field is larger than bytes_allocated\nfield, then it may trigger the out-of-bounds read bug(reported as\nuse-after-free bug) in ntfs_attr_find(), when kernel tries to access the\ncorresponding mft record's attribute.\n\nThis patch solves it by adding the sanity check between attrs_offset field\nand bytes_allocated field, after loading the first mft record.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-416","Use After Free","The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory \"belongs\" to the code that operates on the new pointer.","weakness","Stable","Variant","High",[],[],[],[],[24,26,28,30],{"_key":25},"SUSE-SU-2025:01966-1",{"_key":27},"SUSE-SU-2025:02173-1",{"_key":29},"DEBIAN-CVE-2022-49763",{"_key":31},"UBUNTU-CVE-2022-49763",[],[34,35],{"_key":25},{"_key":27},"2025-05-01T14:09:03.607Z","2026-05-11T19:06:18.646Z","Analyzed",{"cisa_kev":40,"cisa_ransomware":40,"cisa_vendor":9,"epss_severity":41,"epss_score":42,"severity":43,"severity_score":44,"severity_version":45,"severity_source":46,"severity_vector":47,"severity_status":38},false,"low",0.00041,"high",7.8,"v3.1","nvd","CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",[49,55,59,63,67,71,75,79],{"url":50,"sources":51,"tags":53},"https://git.kernel.org/stable/c/79f3ac7dcd12c05b7539239a4c6fa229a50d786c",[52,46],"cve.org",[54],"Patch",{"url":56,"sources":57,"tags":58},"https://git.kernel.org/stable/c/fb2004bafd1932e08d21ca604ee5844f2b7f212d",[52,46],[54],{"url":60,"sources":61,"tags":62},"https://git.kernel.org/stable/c/d0006d739738a658a9c29b438444259d9f71dfa0",[52,46],[54],{"url":64,"sources":65,"tags":66},"https://git.kernel.org/stable/c/266bd5306286316758e6246ea0345133427b0f62",[52,46],[54],{"url":68,"sources":69,"tags":70},"https://git.kernel.org/stable/c/b825bfbbaafbe8da2037e3a778ad660c59f9e054",[52,46],[54],{"url":72,"sources":73,"tags":74},"https://git.kernel.org/stable/c/5330c423b86263ac7883fef0260b9e2229cb531e",[52,46],[54],{"url":76,"sources":77,"tags":78},"https://git.kernel.org/stable/c/4863f815463034f588a035cfd99cdca97a4f1069",[52,46],[54],{"url":80,"sources":81,"tags":82},"https://git.kernel.org/stable/c/d85a1bec8e8d552ab13163ca1874dcd82f3d1550",[52,46],[54],[],{"date":85,"score":42,"percentile":86},"2026-06-03",0.12719,[88,92,95,98,102,105,108,111,114,117,120,123,126,129,132,136,139,142,145,148,151,154,157,160,163,166,169,172,175,178,181,184,187,190,193,196,199,203,206,209,212,215,219,222,225,228,230,233,236,238,240,243,246,249,252,254,257,260,263,266,268,271,274,277,280,283,286,289,292,295,297,300,303,306,309,312,315,318,321,324,327,330,333,337,340,343,346,349,352,355],{"date":89,"score":90,"percentile":91},"2025-11-04",0.00076,0.23416,{"date":93,"score":90,"percentile":94},"2025-11-05",0.23404,{"date":96,"score":90,"percentile":97},"2025-11-06",0.23408,{"date":99,"score":100,"percentile":101},"2025-11-07",0.00024,0.05091,{"date":103,"score":100,"percentile":104},"2025-11-08",0.05085,{"date":106,"score":100,"percentile":107},"2025-11-09",0.0509,{"date":109,"score":100,"percentile":110},"2025-11-10",0.05068,{"date":112,"score":100,"percentile":113},"2025-11-11",0.05106,{"date":115,"score":100,"percentile":116},"2025-11-12",0.05111,{"date":118,"score":100,"percentile":119},"2025-11-13",0.05137,{"date":121,"score":100,"percentile":122},"2025-11-14",0.05174,{"date":124,"score":100,"percentile":125},"2025-11-15",0.05198,{"date":127,"score":100,"percentile":128},"2025-11-16",0.05214,{"date":130,"score":100,"percentile":131},"2025-11-17",0.05208,{"date":133,"score":134,"percentile":135},"2025-11-18",0.00031,0.04755,{"date":137,"score":134,"percentile":138},"2025-11-19",0.04795,{"date":140,"score":134,"percentile":141},"2025-11-20",0.04852,{"date":143,"score":100,"percentile":144},"2025-11-21",0.05264,{"date":146,"score":100,"percentile":147},"2025-11-22",0.05258,{"date":149,"score":100,"percentile":150},"2025-11-23",0.05244,{"date":152,"score":100,"percentile":153},"2025-11-24",0.05227,{"date":155,"score":100,"percentile":156},"2025-11-25",0.05238,{"date":158,"score":100,"percentile":159},"2025-11-26",0.05271,{"date":161,"score":100,"percentile":162},"2025-11-27",0.05288,{"date":164,"score":100,"percentile":165},"2025-11-28",0.05268,{"date":167,"score":100,"percentile":168},"2025-11-29",0.05312,{"date":170,"score":100,"percentile":171},"2025-11-30",0.05306,{"date":173,"score":100,"percentile":174},"2025-12-01",0.05395,{"date":176,"score":100,"percentile":177},"2025-12-02",0.05411,{"date":179,"score":100,"percentile":180},"2025-12-03",0.05433,{"date":182,"score":100,"percentile":183},"2025-12-04",0.05386,{"date":185,"score":100,"percentile":186},"2025-12-05",0.05449,{"date":188,"score":100,"percentile":189},"2025-12-06",0.05462,{"date":191,"score":100,"percentile":192},"2025-12-07",0.0546,{"date":194,"score":100,"percentile":195},"2025-12-08",0.0547,{"date":197,"score":100,"percentile":198},"2025-12-09",0.05515,{"date":200,"score":201,"percentile":202},"2025-12-10",0.00017,0.03224,{"date":204,"score":201,"percentile":205},"2025-12-11",0.03227,{"date":207,"score":201,"percentile":208},"2025-12-12",0.03232,{"date":210,"score":201,"percentile":211},"2025-12-13",0.03203,{"date":213,"score":201,"percentile":214},"2025-12-14",0.03201,{"date":216,"score":217,"percentile":218},"2025-12-15",0.00014,0.01858,{"date":220,"score":217,"percentile":221},"2025-12-16",0.01852,{"date":223,"score":217,"percentile":224},"2025-12-17",0.01869,{"date":226,"score":217,"percentile":227},"2025-12-18",0.01866,{"date":229,"score":217,"percentile":227},"2025-12-19",{"date":231,"score":217,"percentile":232},"2025-12-20",0.01867,{"date":234,"score":217,"percentile":235},"2025-12-21",0.01875,{"date":237,"score":217,"percentile":235},"2025-12-22",{"date":239,"score":217,"percentile":235},"2025-12-23",{"date":241,"score":217,"percentile":242},"2025-12-24",0.01882,{"date":244,"score":217,"percentile":245},"2025-12-25",0.01888,{"date":247,"score":217,"percentile":248},"2025-12-26",0.0189,{"date":250,"score":201,"percentile":251},"2025-12-27",0.034,{"date":253,"score":217,"percentile":245},"2025-12-28",{"date":255,"score":217,"percentile":256},"2025-12-29",0.0188,{"date":258,"score":217,"percentile":259},"2025-12-30",0.01874,{"date":261,"score":217,"percentile":262},"2025-12-31",0.01872,{"date":264,"score":217,"percentile":265},"2026-01-01",0.01887,{"date":267,"score":217,"percentile":256},"2026-01-02",{"date":269,"score":217,"percentile":270},"2026-01-03",0.01884,{"date":272,"score":217,"percentile":273},"2026-01-04",0.01961,{"date":275,"score":217,"percentile":276},"2026-01-05",0.01967,{"date":278,"score":217,"percentile":279},"2026-01-06",0.01963,{"date":281,"score":217,"percentile":282},"2026-01-07",0.01982,{"date":284,"score":217,"percentile":285},"2026-01-08",0.02,{"date":287,"score":217,"percentile":288},"2026-01-09",0.02016,{"date":290,"score":217,"percentile":291},"2026-01-10",0.02031,{"date":293,"score":217,"percentile":294},"2026-01-11",0.02019,{"date":296,"score":217,"percentile":294},"2026-01-12",{"date":298,"score":217,"percentile":299},"2026-01-13",0.0201,{"date":301,"score":217,"percentile":302},"2026-01-14",0.02018,{"date":304,"score":201,"percentile":305},"2026-01-15",0.03377,{"date":307,"score":201,"percentile":308},"2026-01-16",0.03368,{"date":310,"score":201,"percentile":311},"2026-01-17",0.0337,{"date":313,"score":201,"percentile":314},"2026-01-18",0.03362,{"date":316,"score":201,"percentile":317},"2026-01-19",0.03342,{"date":319,"score":201,"percentile":320},"2026-01-20",0.03333,{"date":322,"score":201,"percentile":323},"2026-01-21",0.03319,{"date":325,"score":201,"percentile":326},"2026-01-22",0.03322,{"date":328,"score":201,"percentile":329},"2026-01-23",0.03371,{"date":331,"score":201,"percentile":332},"2026-01-24",0.03398,{"date":334,"score":335,"percentile":336},"2026-01-25",0.00019,0.04203,{"date":338,"score":335,"percentile":339},"2026-01-26",0.04191,{"date":341,"score":335,"percentile":342},"2026-01-27",0.04179,{"date":344,"score":335,"percentile":345},"2026-01-28",0.04162,{"date":347,"score":335,"percentile":348},"2026-01-29",0.04178,{"date":350,"score":335,"percentile":351},"2026-01-30",0.04181,{"date":353,"score":335,"percentile":354},"2026-01-31",0.04158,{"date":356,"score":335,"percentile":357},"2026-02-01",0.04261,[359],{"source":46,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":360,"cvss_v4_0":9},{"baseScore":44,"baseSeverity":361,"vectorString":47,"impactScore":362,"exploitabilityScore":363},"HIGH",9.8,4.6,[365,400],{"ecosystem":9,"name":366,"vendor":367,"product":367,"cpe_part":368,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":369},"Linux","linux","a",[370,377,380,383,386,389,392,395,398],{"version":371,"is_range":372,"range_type":52,"version_start":373,"version_start_type":374,"version_end":375,"version_end_type":376,"fixed_in":9},">= 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2, \u003C 79f3ac7dcd12c05b7539239a4c6fa229a50d786c",true,"1da177e4c3f41524e886b7f1b8a0c1fc7321cac2","including","79f3ac7dcd12c05b7539239a4c6fa229a50d786c","excluding",{"version":378,"is_range":372,"range_type":52,"version_start":373,"version_start_type":374,"version_end":379,"version_end_type":376,"fixed_in":9},">= 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2, \u003C fb2004bafd1932e08d21ca604ee5844f2b7f212d","fb2004bafd1932e08d21ca604ee5844f2b7f212d",{"version":381,"is_range":372,"range_type":52,"version_start":373,"version_start_type":374,"version_end":382,"version_end_type":376,"fixed_in":9},">= 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2, \u003C d0006d739738a658a9c29b438444259d9f71dfa0","d0006d739738a658a9c29b438444259d9f71dfa0",{"version":384,"is_range":372,"range_type":52,"version_start":373,"version_start_type":374,"version_end":385,"version_end_type":376,"fixed_in":9},">= 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2, \u003C 266bd5306286316758e6246ea0345133427b0f62","266bd5306286316758e6246ea0345133427b0f62",{"version":387,"is_range":372,"range_type":52,"version_start":373,"version_start_type":374,"version_end":388,"version_end_type":376,"fixed_in":9},">= 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2, \u003C b825bfbbaafbe8da2037e3a778ad660c59f9e054","b825bfbbaafbe8da2037e3a778ad660c59f9e054",{"version":390,"is_range":372,"range_type":52,"version_start":373,"version_start_type":374,"version_end":391,"version_end_type":376,"fixed_in":9},">= 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2, \u003C 5330c423b86263ac7883fef0260b9e2229cb531e","5330c423b86263ac7883fef0260b9e2229cb531e",{"version":393,"is_range":372,"range_type":52,"version_start":373,"version_start_type":374,"version_end":394,"version_end_type":376,"fixed_in":9},">= 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2, \u003C 4863f815463034f588a035cfd99cdca97a4f1069","4863f815463034f588a035cfd99cdca97a4f1069",{"version":396,"is_range":372,"range_type":52,"version_start":373,"version_start_type":374,"version_end":397,"version_end_type":376,"fixed_in":9},">= 1da177e4c3f41524e886b7f1b8a0c1fc7321cac2, \u003C d85a1bec8e8d552ab13163ca1874dcd82f3d1550","d85a1bec8e8d552ab13163ca1874dcd82f3d1550",{"version":399,"is_range":40,"range_type":52,"version_start":399,"version_start_type":374,"version_end":399,"version_end_type":374,"fixed_in":9},"2.6.12",{"ecosystem":9,"name":401,"vendor":367,"product":402,"cpe_part":403,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":404},"linux kernel","linux_kernel","o",[405,409,413,417,421,425,429],{"version":406,"is_range":372,"range_type":407,"version_start":9,"version_start_type":9,"version_end":408,"version_end_type":376,"fixed_in":9},"lt4.9.334","cpe","4.9.334",{"version":410,"is_range":372,"range_type":407,"version_start":411,"version_start_type":374,"version_end":412,"version_end_type":376,"fixed_in":9},"gte4.10_lt4.14.300","4.10","4.14.300",{"version":414,"is_range":372,"range_type":407,"version_start":415,"version_start_type":374,"version_end":416,"version_end_type":376,"fixed_in":9},"gte4.15_lt4.19.267","4.15","4.19.267",{"version":418,"is_range":372,"range_type":407,"version_start":419,"version_start_type":374,"version_end":420,"version_end_type":376,"fixed_in":9},"gte4.20_lt5.4.225","4.20","5.4.225",{"version":422,"is_range":372,"range_type":407,"version_start":423,"version_start_type":374,"version_end":424,"version_end_type":376,"fixed_in":9},"gte5.5_lt5.10.156","5.5","5.10.156",{"version":426,"is_range":372,"range_type":407,"version_start":427,"version_start_type":374,"version_end":428,"version_end_type":376,"fixed_in":9},"gte5.11_lt5.15.80","5.11","5.15.80",{"version":430,"is_range":372,"range_type":407,"version_start":431,"version_start_type":374,"version_end":432,"version_end_type":376,"fixed_in":9},"gte5.16_lt6.0.10","5.16","6.0.10"]