CVE-2026-46062
Published May 27, 2026
Modified May 27, 2026
Description
In the Linux kernel, the following vulnerability has been resolved: ntfs3: fix integer overflow in run_unpack() volume boundary check The volume boundary check `lcn + len > sbi->used.bitmap.nbits` uses raw addition which can wrap around for large lcn and len values, bypassing the validation. Use check_add_overflow() as is already done for the adjacent prev_lcn + dlcn and vcn64 + len checks added by commit 3ac37e100385 ("ntfs3: Fix integer overflow in run_unpack()"). Found by fuzzing with a source-patched harness (LibAFL + QEMU).
References
Other References
https://git.kernel.org/stable/c/60dab3e2931f3d792438a77a6cb0cb731c43300b
https://git.kernel.org/stable/c/6175d09c23bec4b60860ee9a0170308ff4b56e10
https://git.kernel.org/stable/c/984a415f019536ea2d24de9010744e5302a9a948
https://git.kernel.org/stable/c/a954061b334ec67c79ae9d0cadd83fa521396487
https://git.kernel.org/stable/c/f1af27cec07a9fd0847166bdb23c99e86b05bfdc
Frequently Asked Questions
What is CVE-2026-46062? +
In the Linux kernel, the following vulnerability has been resolved:
ntfs3: fix integer overflow in run_unpack() volume boundary check
The volume boundary check `lcn + len > sbi->used.bitmap.nbits` uses raw
addition which can wrap around for large lcn and len values, bypassing
the validation. Use check_add_overflow() as is already done for the
adjacent prev_lcn + dlcn and vcn64 + len checks added by commit
3ac37e100385 ("ntfs3: Fix integer overflow in run_unpack()").
Found by fuzzing with a source-patched harness (LibAFL + QEMU).
How do I check if I'm vulnerable to CVE-2026-46062? +
You can use Secably's free Website Scanner to check your website for known vulnerabilities. For infrastructure scanning, use the Port Scanner to identify exposed services that may be affected. Check the vendor advisories linked above for specific patch and version information.