Lucene search
+L

33 matches found

OSV
OSV
added 2021/03/19 5:15 a.m.32 views

CVE-2021-28831

decompressgunzip.c in BusyBox through 1.32.1 mishandles the error bit on the huftbuild result pointer, with a resultant invalid free or segmentation fault, via malformed gzip data...

7.5CVSS6.7AI score
Exploits0References8
UbuntuCve
UbuntuCve
added 2021/03/19 5:15 a.m.58 views

CVE-2021-28831

decompressgunzip.c in BusyBox through 1.32.1 mishandles the error bit on the huftbuild result pointer, with a resultant invalid free or segmentation fault, via malformed gzip data...

7.5CVSS6.8AI score0.02719EPSS
Exploits0References4
Prion
Prion
added 2021/03/19 5:15 a.m.27 views

Null pointer dereference

decompressgunzip.c in BusyBox through 1.32.1 mishandles the error bit on the huftbuild result pointer, with a resultant invalid free or segmentation fault, via malformed gzip data...

5CVSS7.4AI score0.02719EPSS
Exploits0References6Affected Software3
OSV
OSV
added 2021/03/19 5:15 a.m.16 views

UBUNTU-CVE-2021-28831

decompressgunzip.c in BusyBox through 1.32.1 mishandles the error bit on the huftbuild result pointer, with a resultant invalid free or segmentation fault, via malformed gzip data...

7.5CVSS6.9AI score0.02719EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2021/03/19 4:1 a.m.4 views

CVE-2021-28831

decompressgunzip.c in BusyBox through 1.32.1 mishandles the error bit on the huftbuild result pointer, with a resultant invalid free or segmentation fault, via malformed gzip data...

7.5CVSS6.5AI score0.02719EPSS
Exploits0References6
Cvelist
Cvelist
added 2021/03/19 4:1 a.m.33 views

CVE-2021-28831

decompressgunzip.c in BusyBox through 1.32.1 mishandles the error bit on the huftbuild result pointer, with a resultant invalid free or segmentation fault, via malformed gzip data...

7.5CVSS7.8AI score0.02719EPSS
Exploits0References6
AlpineLinux
AlpineLinux
added 2021/03/19 4:1 a.m.53 views

CVE-2021-28831

decompressgunzip.c in BusyBox through 1.32.1 mishandles the error bit on the huftbuild result pointer, with a resultant invalid free or segmentation fault, via malformed gzip data...

7.5CVSS7.1AI score0.02719EPSS
Exploits0
CNNVD
CNNVD
added 2021/03/19 12:0 a.m.4 views

BusyBox 安全漏洞

BusyBox is a suite of applications containing several linux commands and tools by Denis Vlasenko, a Ukrainian individual developer. A security vulnerability exists in BusyBox through 1.32.1, which stems from incorrectly handling the wrong bit on the huft build result pointer, leading to invalid...

7.5CVSS6.9AI score0.02719EPSS
Exploits0References23
OSV
OSV
added 2021/01/03 7:15 p.m.12 views

CVE-2020-35963

flbgzipcompress in flbgzip.c in Fluent Bit before 1.6.4 has an out-of-bounds write because it does not use the correct calculation of the maximum gzip data-size expansion...

7.8CVSS7.2AI score
Exploits0References3
Prion
Prion
added 2021/01/03 7:15 p.m.10 views

Out-of-bounds

flbgzipcompress in flbgzip.c in Fluent Bit before 1.6.4 has an out-of-bounds write because it does not use the correct calculation of the maximum gzip data-size expansion...

6.8CVSS7.7AI score0.0131EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2021/01/03 6:15 p.m.24 views

CVE-2020-35963

flbgzipcompress in flbgzip.c in Fluent Bit before 1.6.4 has an out-of-bounds write because it does not use the correct calculation of the maximum gzip data-size expansion...

7.7AI score0.0131EPSS
Exploits1References3
OSV
OSV
added 2020/02/22 11:15 p.m.9 views

CVE-2020-9342

The F-Secure AV parsing engine before 2020-02-05 allows virus-detection bypass via crafted Compression Method data in a GZIP archive. This affects versions before 17.0.605.474 on Linux of Cloud Protection For Salesforce, Email and Server Security, and Internet GateKeeper...

5.5CVSS6.1AI score0.01641EPSS
Exploits0References4
Cent OS
Cent OS
added 2005/06/13 3:16 p.m.77 views

gzip security update

CentOS Errata and Security Advisory CESA-2005:357 An updated gzip package is now available. This update has been rated as having low security impact by the Red Hat Security Response Team. The gzip package contains the GNU gzip data compression program. A bug was found in the way zgrep processes...

5CVSS5.7AI score0.03584EPSS
Exploits1References9
Rows per page
Query Builder