21 matches found
Siemens SIMATIC S7-1500 TM MFP BIOS Out-of-bounds Read (CVE-2021-42374)
An out-of-bounds heap read in Busybox's unlzma applet leads to information leak and denial of service when crafted LZMA-compressed input is decompressed. This can be triggered by any applet/format that internally supports LZMA compression. This plugin only works with Tenable.ot. Please visit...
[SECURITY] [DLA 4019-1] busybox security update
Debian LTS Advisory DLA-4019-1 [email protected] https://www.debian.org/lts/security/ Tobias Frost January 19, 2025 https://wiki.debian.org/LTS Package : busybox Version : 1:1.30.1-6+deb11u1 CVE ID : CVE-2021-28831 CVE-2021-42374 CVE-2021-42378 CVE-2021-42379 CVE-2021-42380 CVE-2021-423...
CVE-2021-42374 affecting package busybox for versions less than 1.35.1-1
CVE-2021-42374 affecting package busybox for versions less than 1.35.1-1. A patched version of the package is available...
CBL Mariner 2.0 Security Update: busybox (CVE-2021-42374)
The version of busybox installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2021-42374 advisory. - An out-of-bounds heap read in Busybox's unlzma applet leads to information leak and denial of service when...
SUSE: Security Advisory (SUSE-SU-2022:4253-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2021-42374 affecting package busybox for versions less than 1.35.0-1
CVE-2021-42374 affecting package busybox for versions less than 1.35.0-1. An upgraded version of the package is available that resolves this issue...
Huawei EulerOS: Security Advisory for busybox (EulerOS-SA-2022-1287)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for busybox (EulerOS-SA-2022-1238)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for busybox (EulerOS-SA-2022-1250)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS 2.0 SP10 : busybox (EulerOS-SA-2022-1250)
According to the versions of the busybox package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An out-of-bounds heap read in Busybox's unlzma applet leads to information leak and denial of service when crafted LZMA-compressed input is...
EulerOS 2.0 SP10 : busybox (EulerOS-SA-2022-1238)
According to the versions of the busybox package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An out-of-bounds heap read in Busybox's unlzma applet leads to information leak and denial of service when crafted LZMA-compressed input is...
SUSE: Security Advisory (SUSE-SU-2022:0135-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
USN-5179-1: BusyBox vulnerabilities | Cloud Foundry
Severity Medium Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 18.04 Description It was discovered that BusyBox incorrectly handled certain malformed gzip archives. If a user or automated system were tricked into processing a specially crafted gzip archive, a remote attacker could use...
CVE-2021-42374 affecting package busybox 1.32.0-2
CVE-2021-42374 affecting package busybox 1.32.0-2. An upgraded version of the package is available that resolves this issue...
Ubuntu 18.04 LTS / 20.04 LTS : BusyBox vulnerabilities (USN-5179-1)
The remote Ubuntu 18.04 LTS / 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5179-1 advisory. It was discovered that BusyBox incorrectly handled certain malformed gzip archives. If a user or automated system were tricked into processin...
USN-5179-1: BusyBox vulnerabilities
It was discovered that BusyBox incorrectly handled certain malformed gzip archives. If a user or automated system were tricked into processing a specially crafted gzip archive, a remote attacker could use this issue to cause BusyBox to crash, resulting in a denial of service, or possibly execute...
Fedora: Security Advisory for busybox (FEDORA-2021-5a95823596)
The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Fedora: Security Advisory for busybox (FEDORA-2021-c52c0fe490)
The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
CVE-2021-42374
creationtimestamp| type| source ---|---|--- 2021-11-17 16:30:53+00:00| seen| https://t.me/cibsecurity/32514 2022-08-25 11:00:04+00:00| seen| https://t.me/poxek/2360...
CVE-2021-42374
An out-of-bounds heap read in Busybox's unlzma applet leads to information leak and denial of service when crafted LZMA-compressed input is decompressed. This can be triggered by any applet/format that...