Lucene search
K

17 matches found

OSV
OSV
added 2026/05/25 2:1 p.m.6 views

SUSE-SU-2026:2053-1 Security update for busybox

This update for busybox fixes the following issue - CVE-2026-29004: Heap buffer overflow vulnerability in the DHCPv6 client udhcpc6 DNSSERVERS option handler in networking/udhcp/d6dhcpc.c bsc1263989...

8.8CVSS6AI score0.00375EPSS
Exploits0References3
AlpineLinux
AlpineLinux
added 2025/04/23 12:0 a.m.13 views

CVE-2025-46394

In tar in BusyBox through 1.37.0, a TAR archive can have filenames hidden from a listing through the use of terminal escape sequences...

3.3CVSS7AI score0.00149EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/02/10 12:0 a.m.19 views

EulerOS 2.0 SP11 : busybox (EulerOS-SA-2025-1150)

According to the versions of the busybox package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A use-after-free vulnerability was discovered in BusyBox v.1.36.1 via a crafted awk pattern in the awk.c copyvar function.CVE-2023-42365 A...

5.5CVSS6.6AI score0.00433EPSS
Exploits3References4
Tenable Nessus
Tenable Nessus
added 2025/02/10 12:0 a.m.14 views

EulerOS 2.0 SP11 : busybox (EulerOS-SA-2025-1131)

According to the versions of the busybox package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A use-after-free vulnerability was discovered in BusyBox v.1.36.1 via a crafted awk pattern in the awk.c copyvar function.CVE-2023-42365 A...

5.5CVSS6.6AI score0.00433EPSS
Exploits3References4
OSV
OSV
added 2023/09/27 4:37 p.m.10 views

SUSE-SU-2023:3820-1 Security update for busybox

This update for busybox fixes the following issues: - CVE-2022-48174: Fixed stack overflow vulnerability. bsc1214538...

9.8CVSS9.6AI score0.02979EPSS
Exploits0References3
OSV
OSV
added 2022/12/08 4:19 p.m.6 views

SUSE-SU-2022:4371-1 Security update for busybox

This update for busybox fixes the following issues: - CVE-2022-30065: Fixed use-after-free in the AWK applet bsc1199744. - CVE-2014-9645: Fixed loading of unwanted module with / in module names bsc914660. - Update to 1.35.0 also introduced: - awk: fix printf %%, fix read beyond end of buffer -...

7.8CVSS6.5AI score0.01167EPSS
Exploits3References5
OSV
OSV
added 2022/11/28 4:11 p.m.18 views

SUSE-SU-2022:4260-1 Security update for busybox

This update for busybox fixes the following issues: - CVE-2014-9645: Fixed loading of unwanted module with / in module names bsc914660. - Enable switchroot With this change virtme --force-initramfs works as expected. - Enable udhcpc Update to 1.35.0: - awk: fix printf %%, fix read beyond end of...

9.8CVSS7.2AI score0.32919EPSS
Exploits2References5
OSV
OSV
added 2022/11/28 10:23 a.m.23 views

SUSE-SU-2022:4253-1 Security update for busybox

This update for busybox fixes the following issues: - CVE-2014-9645: Fixed loading of unwanted modules with / bsc914660. - CVE-2017-16544: Fixed insufficient sanitization of filenames when autocompleting bsc1069412. - CVE-2015-9261: Fixed huftbuild misuses a pointer, causing segfaults bsc1102912....

9.8CVSS7.3AI score0.32919EPSS
Exploits21References46
OSV
OSV
added 2022/04/09 9:20 p.m.15 views

MGASA-2022-0135 Updated busybox packages fix security vulnerability

BusyBox through 1.35.0 allows remote attackers to execute arbitrary code if netstat is used to print a DNS PTR record's value to a VT compatible terminal. Alternatively, the attacker could choose to change the terminal's colors. CVE-2022-28391...

8.8CVSS8.8AI score0.03505EPSS
Exploits1References4
OSV
OSV
added 2022/02/14 10:50 a.m.19 views

SUSE-SU-2022:0135-2 Security update for busybox

This update for busybox fixes the following issues: - CVE-2011-5325: Fixed tar directory traversal bsc951562. - CVE-2015-9261: Fixed segfalts and application crashes in huftbuild bsc1102912. - CVE-2016-2147: Fixed out of bounds write heap due to integer underflow in udhcpc bsc970663. -...

9.8CVSS7.5AI score0.32919EPSS
Exploits21References42
OSV
OSV
added 2022/01/20 9:5 a.m.25 views

SUSE-SU-2022:0135-1 Security update for busybox

This update for busybox fixes the following issues: - CVE-2011-5325: Fixed tar directory traversal bsc951562. - CVE-2015-9261: Fixed segfalts and application crashes in huftbuild bsc1102912. - CVE-2016-2147: Fixed out of bounds write heap due to integer underflow in udhcpc bsc970663. -...

9.8CVSS7.5AI score0.32919EPSS
Exploits21References42
OSV
OSV
added 2022/01/20 9:4 a.m.20 views

OPENSUSE-SU-2022:0135-1 Security update for busybox

This update for busybox fixes the following issues: - CVE-2011-5325: Fixed tar directory traversal bsc951562. - CVE-2015-9261: Fixed segfalts and application crashes in huftbuild bsc1102912. - CVE-2016-2147: Fixed out of bounds write heap due to integer underflow in udhcpc bsc970663. -...

9.8CVSS7.5AI score0.32919EPSS
Exploits21References42
OSV
OSV
added 2021/12/02 4:49 p.m.9 views

MGASA-2021-0533 Updated busybox packages fix security vulnerability

A NULL pointer dereference in Busybox's hush applet leads to denial of service when processing a crafted shell command, due to missing validation after a \x03 delimiter character. This may be used for DoS under very rare conditions of filtered command input. CVE-2021-42376 An attacker-controlled...

9.8CVSS6.9AI score0.03379EPSS
Exploits0References3
OSV
OSV
added 2021/10/31 2:53 p.m.20 views

OPENSUSE-SU-2021:1408-1 Security update for busybox

This update for busybox fixes the following issues: - CVE-2021-28831: Fixed invalid free or segmentation fault via malformed gzip data bsc1184522. - CVE-2018-20679: Fixed out of bounds read in udhcp bsc1121426. - CVE-2018-1000517: Fixed buffer overflow in the retrievefiledata bsc1099260. -...

9.8CVSS8.1AI score0.32919EPSS
Exploits5References11
OSV
OSV
added 2021/10/27 8:8 a.m.20 views

SUSE-SU-2021:3531-1 Security update for busybox

This update for busybox fixes the following issues: - CVE-2021-28831: Fixed invalid free or segmentation fault via malformed gzip data bsc1184522. - CVE-2018-20679: Fixed out of bounds read in udhcp bsc1121426. - CVE-2018-1000517: Fixed buffer overflow in the retrievefiledata bsc1099260. -...

9.8CVSS8.5AI score0.32919EPSS
Exploits5References11
Vulnrichment
Vulnrichment
added 2019/01/09 4:0 p.m.14 views

CVE-2018-20679

An issue was discovered in BusyBox before 1.30.0. An out of bounds read in udhcp components consumed by the DHCP server, client, and relay allows a remote attacker to leak sensitive information from the stack by sending a crafted DHCP message. This is related to verification in udhcpgetoption in...

6.9AI score0.07694EPSS
Exploits2References7
OSV
OSV
added 2013/11/30 9:33 p.m.9 views

MGASA-2013-0358 Updated busybox package fixes security vulnerability

It was found that the mdev BusyBox utility could create certain directories within /dev with world-writable permissions. A local unprivileged user could use this flaw to manipulate portions of the /dev directory tree CVE-2013-1813...

7.2CVSS6.1AI score0.00623EPSS
Exploits5References3
Rows per page
Query Builder