CVE-2021-33287: 
Alma Linux vulnerability analysis and mitigation

CVE-2021-33287 affects NTFS-3G versions prior to 2021.8.22, where specially crafted NTFS attributes read in the function ntfsattrpread_i can trigger a heap buffer overflow, potentially allowing for writing to arbitrary memory or denial of service of the application (NVD, GitHub Advisory).

The vulnerability has been assigned a CVSS v3.1 base score of 7.8 (HIGH) with the vector string CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H, indicating local access is required with low attack complexity and privilege requirements. The vulnerability is classified as CWE-787 (Out-of-bounds Write) and affects the ntfsattrpread_i function when processing NTFS attributes (NVD).

The vulnerability can be exploited to write to arbitrary memory locations or cause denial of service. If the ntfs-3g binary is setuid root, a local attacker could potentially execute arbitrary privileged code. Additionally, if a system is configured to automatically mount external storage devices, an attacker with physical access could exploit this vulnerability through a maliciously crafted NTFS-formatted device (GitHub Advisory).

The primary mitigation is to upgrade to NTFS-3G version 2021.8.22 or later. No alternative workarounds are available. Various Linux distributions have released security updates to address this vulnerability, including Debian (DSA-4971-1), Fedora, and Gentoo (Debian Advisory, Gentoo Advisory).