CVE-2016-5011

Priority
Description
The parse_dos_extended function in partitions/dos.c in the libblkid library
in util-linux allows physically proximate attackers to cause a denial of
service (memory consumption) via a crafted MSDOS partition table with an
extended partition boot record at zero offset.
Package
Upstream:released (2.28.1-1)
Ubuntu 12.04 ESM (Precise Pangolin):needed
Ubuntu 14.04 ESM (Trusty Tahr):needed
Ubuntu 16.04 LTS (Xenial Xerus):needed
Ubuntu 18.04 LTS (Bionic Beaver):not-affected (2.31.1-0.4ubuntu3.3)
Ubuntu 18.10 (Cosmic Cuttlefish):not-affected (2.32-0.1ubuntu2)
Ubuntu 19.04 (Disco Dingo):not-affected (2.33.1-0.1ubuntu2)
Ubuntu 19.10 (Eoan):not-affected (2.33.1-0.1ubuntu2)
Patches:
Upstream:https://git.kernel.org/cgit/utils/util-linux/util-linux.git/commit/?id=7164a1c34d18831ac61c6744ad14ce916d389b3f
Upstream:https://git.kernel.org/cgit/utils/util-linux/util-linux.git/commit/?id=50d1594c2e6142a3b51d2143c74027480df082e0
More Information

Updated: 2019-05-10 15:14:18 UTC (commit 3c00b0ed9466e443831508364cb19328f87345f9)