github Seagate/openSeaChest v26.03.2-Beta1
on GitHub

latest release: v26.03.2-Beta2
pre-release2 hours ago

Bug Fixes

  • SCSI defect list bounds check (32-bit) — A previous release fixed an out-of-bounds memory access in SCSI defect list handling on 64-bit builds. This patch extends the same guard to 32-bit builds.

  • Fast-format MBR erase on SATA — Fixed a logic error where fast-format incorrectly assumed ATA Zeros Ext was always available. On hardware that does not support that command, the MBR erase step was silently skipped. If the drive had a valid MBR — including a protective MBR from a GPT-partitioned disk — the drive could become unpartitionable after a sector-size change unless erased with another tool like openSeaChest_Erase after a power cycle to the system was completed.

  • json-c header installation — Fixed an issue where json-c headers were being installed from builds sourced directly from this GitHub repository. (#327)

  • Additional memory safety guards — Several operations that allocate memory based on device-reported values received the same class of fix applied to the SCSI defect list. A maliciously crafted or buggy device could return an abnormally large count that causes the calculated allocation size to wrap around, leading to an undersized buffer and a subsequent out-of-bounds write. None of these conditions are reachable with real, spec-compliant hardware. The affected operations are:

    • Partition info (--showPartitionInfo) — A GPT header reporting ≥ ~31.5 million partition entries (far beyond what the UEFI specification permits) could trigger a heap overflow on 32-bit builds.
    • SAS firmware download info (--showFWDLInfo) — A response to the Report Supported Operation Codes command returning a total length > 0xFFFFFFFC could trigger an out-of-bounds read and write.
    • Set Max LBA model number mapping — A device reporting an abnormally large number of capacity/model-number descriptors (beyond what the ATA or SCSI specifications allow) could trigger a similar overflow.

  • SCSI log and VPD page parser robustness — Added realistic upper-bound checks when iterating over SCSI log pages, subpages, and VPD page lists. A device returning a malformed or oversized page length value could cause a uint16_t loop variable to wrap, which in at least one code path could produce an infinite loop that could never exit. These checks ensure all loops terminate correctly regardless of what the device reports.

Check out latest releases or
releases around Seagate/openSeaChest v26.03.2-Beta1

Don't miss a new openSeaChest release

NewReleases is sending notifications on new releases.

Get notifications