[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

[SECURITY] [DLA 2224-1] dosfstools security update

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Package        : dosfstools
Version        : 3.0.27-1+deb8u1
CVE ID         : CVE-2015-8872 CVE-2016-4804


It was discovered that there was both an invalid memory and heap overflow
vulnerability in dosfstools, a collection of utilities for making and
checking MS-DOS FAT filesystems.


For Debian 8 "Jessie", these problems have been fixed in version
3.0.27-1+deb8u1.

We recommend that you upgrade your dosfstools packages.

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS

-----BEGIN PGP SIGNATURE-----
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=R9op
-----END PGP SIGNATURE-----
Reply to: