The release of exfat-utils 1.2.1 fixes two potential security bugs I discovered. One of them is a bit more severe (a write heap overflow), therefore I think this deserves security handling. https://blog.fuzzing-project.org/25-Heap-overflow-and-endless-loop-in-exfatfsck-exfat-utils.html The update is already in the tree, so stabilization would be next.
amd64 stable
x86 stable
Maintainer(s), please cleanup. Security, please add it to the existing request, or file a new one.
Arches, Thank you for your work. New GLSA Request filed. Maintainer(s), please drop the vulnerable version(s).
Cleanup done.
This issue was resolved and addressed in GLSA 201612-31 at https://security.gentoo.org/glsa/201612-31 by GLSA coordinator Kristian Fiskerstrand (K_F).