2 ignored security issues in jessie

package:
util-linux
severity:
low
created:
2016-02-27
last updated:
2019-01-12

There are 2 open security issues in jessie.
2 issues skipped by the security teams:
  • CVE-2016-5011: The parse_dos_extended function in partitions/dos.c in the libblkid library in util-linux allows physically proximate attackers to cause a denial of service (memory consumption) via a crafted MSDOS partition table with an extended partition boot record at zero offset.
  • CVE-2016-2779: runuser in util-linux allows local users to escape to the parent session via a crafted TIOCSTI ioctl call, which pushes characters to the terminal's input buffer.
Please fix them.