The read_boot function in boot.c in dosfstools prior to 4.0 allows malicious users to cause a denial of service (crash) via a crafted filesystem, which triggers a heap-based buffer overflow in the (1) read_fat function or an out-of-bounds heap read in (2) get_fat function.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
dosfstools project dosfstools |
||
opensuse leap 42.1 |
||
opensuse opensuse 13.2 |
||
canonical ubuntu linux 14.04 |
||
canonical ubuntu linux 12.04 |
||
canonical ubuntu linux 16.04 |
||
canonical ubuntu linux 15.10 |