Your submission was sent successfully! Close

USN-5262-1: GPT fdisk vulnerabilities

3 February 2022

The sgdisk utility of GPT fdisk could be made to crash or possibly allow for elevated privileges.

Releases

Packages

  • gdisk - GPT fdisk text-mode partitioning tool

Details

The potential for an out of bounds write due to a missing bounds
check was discovered to impact the sgdisk utility of GPT fdisk.
Exploitation requires the use of a maliciously formatted storage
device and could cause sgdisk to crash as well as possibly
allow for local privilege escalation.

Update instructions

The problem can be corrected by updating your system to the following package versions:

Ubuntu 16.04

In general, a standard system update will make all the necessary changes.