Lucene search
PRIOn knowledge basePRION:CVE-2016-4804HistoryJun 03, 2016 - 2:59 p.m.
Heap overflow
2016-06-0314:59:00
PRIOn knowledge base
www.prio-n.com
5
The read_boot function in boot.c in dosfstools before 4.0 allows attackers to cause a denial of service (crash) via a crafted filesystem, which triggers a heap-based buffer overflow in the (1) read_fat function or an out-of-bounds heap read in (2) get_fat function.
| CPE | Name | Operator | Version |
|---|---|---|---|
| ubuntu_linux | eq | 12.04 | |
| ubuntu_linux | eq | 16.04 | |
| ubuntu_linux | eq | 15.10 | |
| ubuntu_linux | eq | 14.04 | |
| dosfstools | le | 3.0.28 | |
| leap | eq | 42.1 | |
| opensuse | eq | 13.2 |
References
lists.opensuse.org/opensuse-updates/2016-06/msg00001.html
lists.opensuse.org/opensuse-updates/2016-09/msg00014.html
www.securityfocus.com/bid/90311
www.ubuntu.com/usn/USN-2986-1
blog.fuzzing-project.org/44-dosfstools-fsck.vfat-Several-invalid-memory-accesses.html
github.com/dosfstools/dosfstools/commit/e8eff147e9da1185f9afd5b25948153a3b97cf52
github.com/dosfstools/dosfstools/issues/25
github.com/dosfstools/dosfstools/issues/26
lists.debian.org/debian-lts-announce/2020/05/msg00028.html
Related
ubuntucve
ubuntucve
CVE-2016-4804
2016-05-19 00:00:00
debiancve
debiancve
CVE-2016-4804
2016-06-03 14:59:06
nvd
nvd
CVE-2016-4804
2016-06-03 14:59:06
cve
cve
CVE-2016-4804
2016-06-03 14:59:06
redhatcve
redhatcve
CVE-2016-4804
2016-05-17 11:48:33
nessus
nessus
RHEL 6 : dosfstools (Unpatched Vulnerability)
2024-05-11 00:00:00
RHEL 7 : dosfstools (Unpatched Vulnerability)
2024-05-11 00:00:00
RHEL 5 : dosfstools (Unpatched Vulnerability)
2024-05-11 00:00:00
cvelist
cvelist
CVE-2016-4804
2016-06-03 14:00:00
openvas
openvas
Fedora Update for dosfstools FEDORA-2016-f695b1a747
2016-06-08 00:00:00
Ubuntu: Security Advisory (USN-2986-1)
2016-06-01 00:00:00
Fedora Update for dosfstools FEDORA-2016-e2d635cbf8
2016-06-08 00:00:00
fedora
fedora
[SECURITY] Fedora 23 Update: dosfstools-3.0.28-3.fc23
2016-05-20 23:54:55
[SECURITY] Fedora 22 Update: dosfstools-3.0.27-2.fc22
2016-06-02 14:50:20
[SECURITY] Fedora 24 Update: dosfstools-3.0.28-3.fc24
2016-05-20 17:44:46
osv
osv
dosfstools - security update
2020-05-30 00:00:00
dosfstools - security update
2016-05-15 00:00:00
ubuntu
ubuntu
dosfstools vulnerabilities
2016-05-31 00:00:00
ibm
ibm
debian
debian
[SECURITY] [DLA 2224-1] dosfstools security update
2020-05-30 15:45:08
[SECURITY] [DLA 474-1] dosfstools security update
2016-05-15 14:46:00
mageia
mageia
Updated dosfstools packages fix security vulnerabilities
2016-05-18 23:14:22
photon
photon
Critical Photon OS Security Update - PHSA-2017-0078
2017-10-19 00:00:00