Bugs fixes in "busybox"
| Origin | Bug number | Title | Date fixed |
|---|---|---|---|
| CVE | CVE-2021-42381 | A use-after-free in Busybox's awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the hash_ini | 2021-12-07 |
| CVE | CVE-2021-42380 | A use-after-free in Busybox's awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the clrvar f | 2021-12-07 |
| CVE | CVE-2021-42379 | A use-after-free in Busybox's awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the next_inp | 2021-12-07 |
| CVE | CVE-2021-42378 | A use-after-free in Busybox's awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the getvar_i | 2021-12-07 |
| CVE | CVE-2021-42374 | An out-of-bounds heap read in Busybox's unlzma applet leads to information leak and denial of service when crafted LZMA-compressed input is decompres | 2021-12-07 |
| CVE | CVE-2021-28831 | decompress_gunzip.c in BusyBox through 1.32.1 mishandles the error bit on the huft_build result pointer, with a resultant invalid free or segmentatio | 2021-12-07 |
| Launchpad | 1888543 | hwclock: fails to set time on glibc 2.31 | 2020-11-25 |
| Launchpad | 1888543 | hwclock: fails to set time on glibc 2.31 | 2020-11-25 |
| Launchpad | 1888543 | hwclock: fails to set time on glibc 2.31 | 2020-11-16 |
| Launchpad | 1888543 | hwclock: fails to set time on glibc 2.31 | 2020-11-16 |
| CVE | CVE-2018-1000500 | Busybox contains a Missing SSL certificate validation vulnerability in The "busybox wget" applet that can result in arbitrary code execution. This at | 2020-09-22 |
| CVE | CVE-2018-1000500 | Busybox contains a Missing SSL certificate validation vulnerability in The "busybox wget" applet that can result in arbitrary code execution. This at | 2020-09-22 |
| CVE | CVE-2018-1000500 | Busybox contains a Missing SSL certificate validation vulnerability in The "busybox wget" applet that can result in arbitrary code execution. This at | 2020-09-22 |
| CVE | CVE-2018-1000500 | Busybox contains a Missing SSL certificate validation vulnerability in The "busybox wget" applet that can result in arbitrary code execution. This at | 2020-09-22 |
| CVE | CVE-2018-1000500 | Busybox contains a Missing SSL certificate validation vulnerability in The "busybox wget" applet that can result in arbitrary code execution. This at | 2020-09-22 |
| CVE | CVE-2018-1000500 | Busybox contains a Missing SSL certificate validation vulnerability in The "busybox wget" applet that can result in arbitrary code execution. This at | 2020-09-22 |
| CVE | CVE-2018-1000500 | Busybox contains a Missing SSL certificate validation vulnerability in The "busybox wget" applet that can result in arbitrary code execution. This at | 2020-09-22 |
| CVE | CVE-2018-1000500 | Busybox contains a Missing SSL certificate validation vulnerability in The "busybox wget" applet that can result in arbitrary code execution. This at | 2020-09-22 |
| Launchpad | 1879533 | busybox does not verify TLS connections with CONFIG_FEATURE_WGET_OPENSSL=y and CONFIG_FEATURE_WGET_HTTPS unset, and doesn't warn either about it | 2020-06-16 |
| Launchpad | 1879533 | busybox does not verify TLS connections with CONFIG_FEATURE_WGET_OPENSSL=y and CONFIG_FEATURE_WGET_HTTPS unset, and doesn't warn either about it | 2020-06-16 |
About
-
Send Feedback to @ubuntu_updates
