CVE-2016-4804

medium

Published 2016-06-03 · Modified 2026-05-06

CVSS v3

6.2

CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CVSS v2

2.1

VIR risk

6.2

Description

The read_boot function in boot.c in dosfstools before 4.0 allows attackers to cause a denial of service (crash) via a crafted filesystem, which triggers a heap-based buffer overflow in the (1) read_fat function or an out-of-bounds heap read in (2) get_fat function.

Predictions

Exploit likelihood

62%

Patch ETA

—

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

vendor Authored 2026-05-27

Vendor advisory: debian — https://security-tracker.debian.org/tracker/CVE-2016-4804

vendor Authored 2026-05-27

Vendor advisory: cve@mitre.org — https://github.com/dosfstools/dosfstools/issues/26

vendor Authored 2026-05-27

Vendor advisory: cve@mitre.org — https://github.com/dosfstools/dosfstools/issues/25

vendor Authored 2026-05-27

Vendor advisory: cve@mitre.org — https://blog.fuzzing-project.org/44-dosfstools-fsck.vfat-Several-invalid-memory-accesses.html

vendor Authored 2026-05-27

Vendor advisory: suse — https://www.suse.com/security/cve/CVE-2016-4804.html

OS impact

OS	Version	Status	Fixed in
sles		affected
debian	bookworm	fixed	`4.0-1`
debian	bullseye	fixed	`4.0-1`
debian	forky	fixed	`4.0-1`
debian	sid	fixed	`4.0-1`
debian	trixie	fixed	`4.0-1`
suse	42.1	affected
suse	13.2	affected
ubuntu	12.04	affected
ubuntu	14.04	affected
ubuntu	15.10	affected
ubuntu	16.04	affected

Application impact

Vendor	Product	Versions	Fixed
dosfstools_project	dosfstools	`{"endIncluding":"3.0.28"}`

References

CWEs

CWE-119

Verify integrity in audit chain (admin only). AS-IS.