In version 4.8.0 and earlier of The Sleuth Kit , there is a stack buffer overflow vulnerability in the YAFFS file timestamp parsing logic in yaffsfs_istat in fs/yaffs.c.In version 4.8.0 and earlier of The Sleuth Kit , there is a heap-based buffer over-read in ntfs_dinode_lookup in fs/ntfs.c.