Copied from
ubuntu xenial in
Private PPA for Ubuntu Security Team
by Marc Deslauriers
Changelog
dosfstools (3.0.28-2ubuntu0.1) xenial-security; urgency=medium
* SECURITY UPDATE: out of bounds read denial of service
- debian/patches/date_oob_read.patch: prevent out of bounds array read
in src/check.c.
- No CVE number
* SECURITY UPDATE: memory corruption via off-by-2 in FAT12
- debian/patches/CVE-2015-8872.patch: fix FAT12 logic in src/fat.c.
- CVE-2015-8872
* SECURITY UPDATE: heap overflow via excessive FAT size specifications
- debian/patches/CVE-2016-4804.patch: change size and perform checks in
src/boot.c, src/fsck.fat.h.
- CVE-2016-4804
-- Marc Deslauriers <email address hidden> Wed, 25 May 2016 15:29:46 -0400