Lucene search
K

41 matches found

Debian
Debian
added 2025/01/19 11:19 a.m.26 views

[SECURITY] [DLA 4019-1] busybox security update

Debian LTS Advisory DLA-4019-1 [email protected] https://www.debian.org/lts/security/ Tobias Frost January 19, 2025 https://wiki.debian.org/LTS Package : busybox Version : 1:1.30.1-6+deb11u1 CVE ID : CVE-2021-28831 CVE-2021-42374 CVE-2021-42378 CVE-2021-42379 CVE-2021-42380 CVE-2021-423...

9.8CVSS7.5AI score0.02979EPSS
Exploits3
Ubuntu
Ubuntu
added 2023/09/04 11:50 a.m.446 views

USN-6335-1: BusyBox vulnerabilities

It was discovered that BusyBox incorrectly handled certain malformed gzip archives. If a user or automated system were tricked into processing a specially crafted gzip archive, a remote attacker could use this issue to cause BusyBox to crash, resulting in a denial of service, or execute arbitrary...

9.8CVSS7.3AI score0.02979EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2023/09/04 12:0 a.m.84 views

Ubuntu 16.04 ESM / 18.04 ESM : BusyBox vulnerabilities (USN-6335-1)

The remote Ubuntu 16.04 ESM / 18.04 ESM host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6335-1 advisory. It was discovered that BusyBox incorrectly handled certain malformed gzip archives. If a user or automated system were tricked into processin...

9.8CVSS7.4AI score0.02979EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 3:43 a.m.5 views

SUSE CVE-2021-28831

decompressgunzip.c in BusyBox through 1.32.1 mishandles the error bit on the huftbuild result pointer, with a resultant invalid free or segmentation fault, via malformed gzip data...

7.5CVSS6.9AI score0.02719EPSS
Exploits0References13
OpenVAS
OpenVAS
added 2022/11/29 12:0 a.m.39 views

SUSE: Security Advisory (SUSE-SU-2022:4253-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.2AI score0.32381EPSS
Exploits21References21
OpenVAS
OpenVAS
added 2022/08/26 12:0 a.m.25 views

Ubuntu: Security Advisory (USN-5179-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.7AI score0.02719EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2022/07/07 10:56 a.m.21 views

Security Bulletin: IBM QRadar Network Security is affected by Vulnerability in busybox (CVE-2021-28831)

Summary IBM QRadar Network Security has addressed vulnerability in BusyBox. The issue could lead to denial of service. Vulnerability Details CVEID: CVE-2021-28831 DESCRIPTION: BusyBox is vulnerable to a denial of service, caused by the mishandling of the error bit on the huftbuild result pointer ...

7.5CVSS7AI score0.02719EPSS
Exploits0Affected Software1
OSV
OSV
added 2022/05/10 11:45 a.m.3 views

USN-5179-2 busybox vulnerability

USN-5179-1 fixed vulnerabilities in BusyBox. This update provides the corresponding updates for Ubuntu 16.04 ESM. Original advisory details: It was discovered that BusyBox incorrectly handled certain malformed gzip archives. If a user or automated system were tricked into processing a specially...

7.5CVSS7.1AI score0.02719EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2022/05/10 12:0 a.m.46 views

Ubuntu 16.04 ESM : BusyBox vulnerability (USN-5179-2)

The remote Ubuntu 16.04 ESM host has packages installed that are affected by a vulnerability as referenced in the USN-5179-2 advisory. USN-5179-1 fixed vulnerabilities in BusyBox. This update provides the corresponding updates for Ubuntu 16.04 ESM. Tenable has extracted the preceding description...

7.5CVSS6.9AI score0.02719EPSS
Exploits0References2
CBLMariner
CBLMariner
added 2022/04/09 6:51 a.m.27 views

CVE-2021-28831 affecting package busybox for versions less than 1.32.0-2

CVE-2021-28831 affecting package busybox for versions less than 1.32.0-2. A patched version of the package is available...

7.5CVSS7.1AI score0.02719EPSS
Exploits0
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.21 views

Mageia: Security Advisory (MGASA-2021-0310)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.7AI score0.02719EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2022/01/21 12:0 a.m.48 views

SUSE: Security Advisory (SUSE-SU-2022:0135-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.2AI score0.32381EPSS
Exploits21References17
Cloud Foundry
Cloud Foundry
added 2022/01/20 12:0 a.m.57 views

USN-5179-1: BusyBox vulnerabilities | Cloud Foundry

Severity Medium Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 18.04 Description It was discovered that BusyBox incorrectly handled certain malformed gzip archives. If a user or automated system were tricked into processing a specially crafted gzip archive, a remote attacker could use...

7.5CVSS7.8AI score0.02793EPSS
Exploits1Affected Software2
Redos
Redos
added 2021/12/24 12:0 a.m.38 views

ROS-2-818

2.818 BusyBox Denial of Service CVE-2021-28831 1. Vulnerability Description: The vulnerability allows a remote attacker to perform a denial of service DoS attack. The vulnerability exists due to improper handling of the error bit in the huftbuild result pointer in the decopressgunzip.c file. A...

7.5CVSS7AI score0.02719EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2021/12/08 12:0 a.m.61 views

Ubuntu 18.04 LTS / 20.04 LTS : BusyBox vulnerabilities (USN-5179-1)

The remote Ubuntu 18.04 LTS / 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5179-1 advisory. It was discovered that BusyBox incorrectly handled certain malformed gzip archives. If a user or automated system were tricked into processin...

7.5CVSS7.6AI score0.02793EPSS
Exploits1References11
Ubuntu
Ubuntu
added 2021/12/07 12:44 p.m.432 views

USN-5179-1: BusyBox vulnerabilities

It was discovered that BusyBox incorrectly handled certain malformed gzip archives. If a user or automated system were tricked into processing a specially crafted gzip archive, a remote attacker could use this issue to cause BusyBox to crash, resulting in a denial of service, or possibly execute...

7.5CVSS7.5AI score0.02793EPSS
Exploits1
OpenVAS
OpenVAS
added 2021/11/01 12:0 a.m.40 views

openSUSE: Security Advisory for busybox (openSUSE-SU-2021:1408-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.8CVSS7.2AI score0.32381EPSS
Exploits5References2
OSV
OSV
added 2021/10/31 2:53 p.m.20 views

OPENSUSE-SU-2021:1408-1 Security update for busybox

This update for busybox fixes the following issues: - CVE-2021-28831: Fixed invalid free or segmentation fault via malformed gzip data bsc1184522. - CVE-2018-20679: Fixed out of bounds read in udhcp bsc1121426. - CVE-2018-1000517: Fixed buffer overflow in the retrievefiledata bsc1099260. -...

9.8CVSS8.1AI score0.32381EPSS
Exploits5References11
OpenVAS
OpenVAS
added 2021/10/28 12:0 a.m.44 views

openSUSE: Security Advisory for busybox (openSUSE-SU-2021:3531-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.8CVSS7.2AI score0.32381EPSS
Exploits5References2
OpenVAS
OpenVAS
added 2021/10/28 12:0 a.m.36 views

SUSE: Security Advisory (SUSE-SU-2021:3531-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.1AI score0.32381EPSS
Exploits5References8
Rows per page
Query Builder