An update for ntfs-3g is now available for HCE 3.0

HCE3-SA-2025-0115 An update for ntfs-3g is now available for HCE 3.0 Important HCE 3.0 Security Fix(es): NTFS-3G before 75dcdc2 has a use-after-free in ntfs_uppercase_mbs in libntfs-3g/unistr.c. NOTE: discussion suggests that exploitation would be challenging. (CVE-2023-52890) A buffer overflow was discovered in NTFS-3G before 2022.10.3. Crafted metadata in an NTFS image can cause code execution. A local attacker can exploit this if the ntfs-3g binary is setuid root. A physically proximate attacker can exploit this if NTFS-3G software is configured to execute upon attachment of an external storage device. (CVE-2022-40284) HCE 3.0 ntfs-3g-2022.10.3-2.hce3.x86_64.rpm ntfs-3g-2022.10.3-2.hce3.aarch64.rpm