Two vulnerabilities have been found in exFAT allowing remote attackers to execute arbitrary code or cause Denial of Service.
|Package||sys-fs/exfat-utils on all architectures|
|Affected versions||< 1.2.1|
|Unaffected versions||>= 1.2.1|
A full-featured exFAT file system implementation for Unix-like systems.
Two vulnerabilities were found in exFAT. A malformed input can cause a write heap overflow or cause an endless loop.
Remote attackers could execute arbitrary code or cause Denial of Service.
There is no known workaround at this time.
All exFAT users should upgrade to the latest version:
# emerge --sync # emerge --ask --oneshot --verbose ">=sys-fs/exfat-utils-1.2.1"
December 12, 2016
December 12, 2016: 1