CVE-2016-5011

Priority
Description
The parse_dos_extended function in partitions/dos.c in the libblkid library
in util-linux allows physically proximate attackers to cause a denial of
service (memory consumption) via a crafted MSDOS partition table with an
extended partition boot record at zero offset.
Notes
Package
Upstream:released (2.28.1-1)
Ubuntu 12.04 ESM (Precise Pangolin):needed
Ubuntu 14.04 ESM (Trusty Tahr):needed
Ubuntu 16.04 LTS (Xenial Xerus):needed
Ubuntu 18.04 LTS (Bionic Beaver):not-affected (2.31.1-0.4ubuntu3.3)
Ubuntu 19.04 (Disco Dingo):not-affected (2.33.1-0.1ubuntu2)
Ubuntu 19.10 (Eoan Ermine):not-affected (2.33.1-0.1ubuntu2)
Ubuntu 20.04 (Focal Fossa):not-affected (2.33.1-0.1ubuntu2)
Patches:
Upstream:https://git.kernel.org/cgit/utils/util-linux/util-linux.git/commit/?id=7164a1c34d18831ac61c6744ad14ce916d389b3f
Upstream:https://git.kernel.org/cgit/utils/util-linux/util-linux.git/commit/?id=50d1594c2e6142a3b51d2143c74027480df082e0
More Information

Updated: 2019-12-05 19:30:51 UTC (commit 0aa5e7c87c8b55d2ec5c7f4ca1179cf75de91961)