Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

CVE-2016-10721: Restore Heap Overflow #82

Open
lxp opened this issue Nov 14, 2016 · 3 comments
Open

CVE-2016-10721: Restore Heap Overflow #82

lxp opened this issue Nov 14, 2016 · 3 comments

Comments

@lxp
Copy link

lxp commented Nov 14, 2016

=======================================================================
 title    : Partclone Restore Heap Overflow
 product  : Partclone
 version  : 0.2.87
 homepage : http://partclone.org/
 found    : 2016-01-17
 by       : David Gnedt
=======================================================================

Vendor description:
-------------------

Partclone is a partition imaging tool. Partclone is shipped by various
Linux distributions and used by specialized disk cloning systems like
DRBL (http://drbl.org/), Clonezilla (http://clonezilla.org/),
Redo Backup (http://redobackup.org/), ...


Vulnerability overview/description:
-----------------------------------

partclone.restore is prone to a heap-based buffer overflow
vulnerability due to insufficient validation of the partclone image
header. An attacker may be able to execute arbitrary code in the
context of the user running the affected application.

<details stripped until public fix is available>


Proof of concept:
-----------------

<details stripped until public fix is available>


Vulnerable/tested versions:
---------------------------

The vulnerability is verified to exist in 0.2.87 of Partclone, which is
the most recent version at the time of discovery.
Older versions are probably affected as well.
@lxp
Copy link
Author

lxp commented Nov 14, 2016

It looks like the commit 6a16978 does not fully solve the problem. I only quickly tested versions 0.2.88 and 0.2.89. I will look into more thoroughly it in the next days.

@lxp lxp changed the title Restore Heap Overflow CVE-2016-10721: Restore Heap Overflow May 2, 2018
@lxp
Copy link
Author

lxp commented May 2, 2018

CVE-2016-10721 was assigned to this issue.

@NicoleG25
Copy link

Is there any plans to address this issue?

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

No branches or pull requests

2 participants