1715 matches found
Important: Red Hat Security Advisory: Red Hat Hardened Images RPMs Security Update
An update for Red Hat Hardened Images RPMs is now available. This update includes the following RPMs: busybox: busybox-1.37.0-7.3.hum1 aarch64, x8664 busybox-petitboot-1.37.0-7.3.hum1 aarch64, x8664 busybox-shared-1.37.0-7.3.hum1 aarch64, x8664 busybox-1.37.0-7.3.hum1.src src Security Fixes:...
Astra Linux – Vulnerability in busybox
A flaw was discovered in BusyBox. Incomplete path sanitization in its archive extraction utilities allows attackers to create malicious archives. When these archives are extracted, and under certain conditions, they may write to files outside of the intended directory. This can lead to arbitrary...
Astra Linux – Vulnerability in busybox
A flaw was discovered in BusyBox. This vulnerability allows an attacker to modify files outside of the intended extraction directory by creating a malicious tar archive containing unvalidated hardlink or symlink entries. If the tar archive is extracted with elevated privileges, this flaw can lead...
OESA-2026-2702 busybox security update
BusyBox combines tiny versions of many common UNIX utilities into a single small executable. It provides replacements for most of the utilities you usually find in GNU fileutils, shellutils, etc. It provides a fairly complete environment for any small or embedded system. Security Fixes: BusyBox...
OESA-2026-2701 busybox security update
BusyBox combines tiny versions of many common UNIX utilities into a single small executable. It provides replacements for most of the utilities you usually find in GNU fileutils, shellutils, etc. It provides a fairly complete environment for any small or embedded system. Security Fixes: BusyBox...
OESA-2026-2700 busybox security update
BusyBox combines tiny versions of many common UNIX utilities into a single small executable. It provides replacements for most of the utilities you usually find in GNU fileutils, shellutils, etc. It provides a fairly complete environment for any small or embedded system. Security Fixes: BusyBox...
Siemens RUGGEDCOM RST2428P External Control of File Name or Path (CVE-2026-26157)
A flaw was found in BusyBox. Incomplete path sanitization in its archive extraction utilities allows an attacker to craft malicious archives that when extracted, and under specific conditions, may write to files outside the intended directory. This can lead to arbitrary file overwrite, potentiall...
Siemens RUGGEDCOM RST2428P Improper Access Control (CVE-2025-60876)
BusyBox wget thru 1.3.7 accepted raw CR 0x0D/LF 0x0A and other C0 control bytes in the HTTP request-target path/query, allowing the request line to be split and attacker-controlled headers to be injected. To preserve the HTTP/1.1 request-line shape METHOD SP request-target SP HTTP/1.1, a raw spac...
Siemens RUGGEDCOM RST2428P External Control of File Name or Path (CVE-2026-26158)
A flaw was found in BusyBox. This vulnerability allows an attacker to modify files outside of the intended extraction directory by crafting a malicious tar archive containing unvalidated hardlink or symlink entries. If the tar archive is extracted with elevated privileges, this flaw can lead to...
CVE-2026-26158 vulnerabilities
Vulnerabilities for packages: busybox...
GHSA-XM63-5PJX-VRHP vulnerabilities
Vulnerabilities for packages: busybox...
CVE-2026-26157 vulnerabilities
Vulnerabilities for packages: busybox...
GHSA-R8F8-4PGH-4M8V vulnerabilities
Vulnerabilities for packages: busybox...
GHSA-R8F8-4PGH-4M8V vulnerabilities
Vulnerabilities for packages: busybox...
GHSA-XM63-5PJX-VRHP vulnerabilities
Vulnerabilities for packages: busybox...
CVE-2026-26158 vulnerabilities
Vulnerabilities for packages: busybox...
CVE-2026-26157 vulnerabilities
Vulnerabilities for packages: busybox...
CVE-2023-39810 vulnerabilities
Vulnerabilities for packages: busybox...
GHSA-MM53-X3WX-JGR2 vulnerabilities
Vulnerabilities for packages: busybox...
GHSA-MM53-X3WX-JGR2 vulnerabilities
Vulnerabilities for packages: busybox...