CVE-2016-4804

See a problem?
Please try reporting it to the source first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2016-4804
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2016-4804.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2016-4804
Downstream
Related
Published
2016-06-03T14:59:06Z
Modified
2025-10-21T03:46:51.052498Z
Severity
  • 6.2 (Medium) CVSS_V3 - CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
[none]
Details

The readboot function in boot.c in dosfstools before 4.0 allows attackers to cause a denial of service (crash) via a crafted filesystem, which triggers a heap-based buffer overflow in the (1) readfat function or an out-of-bounds heap read in (2) get_fat function.

References

Affected packages

Git / github.com/dosfstools/dosfstools

Affected ranges

Type
GIT
Repo
https://github.com/dosfstools/dosfstools
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
e8eff147e9da1185f9afd5b25948153a3b97cf52

Affected versions

v2.*

v2.11

v3.*

v3.0.0
v3.0.1
v3.0.10
v3.0.11
v3.0.12
v3.0.13
v3.0.14
v3.0.15
v3.0.16
v3.0.17
v3.0.18
v3.0.19
v3.0.2
v3.0.20
v3.0.21
v3.0.22
v3.0.23
v3.0.24
v3.0.25
v3.0.26
v3.0.27
v3.0.28
v3.0.3
v3.0.4
v3.0.5
v3.0.6
v3.0.7
v3.0.8
v3.0.9

Database specific

vanir_signatures

[
    {
        "id": "CVE-2016-4804-09e237fb",
        "target": {
            "file": "src/fsck.fat.h"
        },
        "source": "https://github.com/dosfstools/dosfstools/commit/e8eff147e9da1185f9afd5b25948153a3b97cf52",
        "signature_type": "Line",
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "255238865409327844582568164948428438254",
                "296336368702393128014096494827826443096",
                "249431492176246829047427151907692272903",
                "282019438315538498064837545060089201378"
            ]
        },
        "deprecated": false,
        "signature_version": "v1"
    },
    {
        "id": "CVE-2016-4804-3c4fdeb9",
        "target": {
            "file": "src/boot.c"
        },
        "source": "https://github.com/dosfstools/dosfstools/commit/e8eff147e9da1185f9afd5b25948153a3b97cf52",
        "signature_type": "Line",
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "123893220649092854101338150332848489365",
                "246076588014694744016441002376821606785",
                "234652834558211004894120601838777277930",
                "37782068935701612668410896084110296969",
                "62940619999127294059429895112190215076",
                "184447703702203650960308840146322049230",
                "58277623227777508570917265192641940546",
                "9106026769713263517168966196591652612",
                "314301353423495558072457380159332437364",
                "309025116302605566367662688958809107069",
                "6560462551031292577615086526307401300",
                "73662561019436316449091922791231850662",
                "303579489349651633726667624743072950613",
                "212272853399085334098005315932532203058",
                "24249371459950878624002050742472740",
                "250262124380751608593672336401196944913",
                "22759964055712584824017748468580141889",
                "194504094987571186023832553265535138106",
                "196753350449575500786119988144394279357",
                "32012460471004387715938225234746519476"
            ]
        },
        "deprecated": false,
        "signature_version": "v1"
    },
    {
        "id": "CVE-2016-4804-967aa689",
        "target": {
            "function": "dump_boot",
            "file": "src/boot.c"
        },
        "source": "https://github.com/dosfstools/dosfstools/commit/e8eff147e9da1185f9afd5b25948153a3b97cf52",
        "signature_type": "Function",
        "digest": {
            "function_hash": "77701543821825306139960602256486180703",
            "length": 2283.0
        },
        "deprecated": false,
        "signature_version": "v1"
    },
    {
        "id": "CVE-2016-4804-f2fc88f6",
        "target": {
            "function": "read_boot",
            "file": "src/boot.c"
        },
        "source": "https://github.com/dosfstools/dosfstools/commit/e8eff147e9da1185f9afd5b25948153a3b97cf52",
        "signature_type": "Function",
        "digest": {
            "function_hash": "157353839392065048035445465538445571550",
            "length": 4476.0
        },
        "deprecated": false,
        "signature_version": "v1"
    }
]