Lucene search
JFROGCVELIST:CVE-2021-42378HistoryNov 15, 2021 - 12:00 a.m.
CVE-2021-42378
2021-11-1500:00:00
CWE-416
JFROG
www.cve.org
8
busybox
use-after-free
awk
denial of service
code execution
A use-after-free in Busyboxβs awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the getvar_i function
CNA Affected
[
{
"vendor": "busybox",
"product": "busybox",
"versions": [
{
"version": "unspecified",
"lessThan": "1.34.0",
"status": "affected",
"versionType": "custom"
}
]
}
]References
claroty.com/team82/research/unboxing-busybox-14-vulnerabilities-uncovered-by-claroty-jfrog
jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6T2TURBYYJGBMQTTN2DSOAIQGP7WCPGV/
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UQXGOGWBIYWOIVXJVRKHZR34UMEHQBXS/
security.netapp.com/advisory/ntap-20211223-0002/
Related
cbl_mariner
cbl_mariner
CVE-2021-42378 affecting package busybox for versions less than 1.35.0-1
2022-04-09 06:51:46
CVE-2021-42378 affecting package busybox 1.32.0-2
2022-01-10 03:59:19
osv
osv
CVE-2021-42378
2021-11-15 21:15:07
busybox vulnerabilities
2021-12-07 12:44:40
debiancve
debiancve
CVE-2021-42378
2021-11-15 21:15:07
nessus
nessus
CBL Mariner 2.0 Security Update: busybox (CVE-2021-42378)
2023-03-20 00:00:00
Amazon Linux AMI : busybox (ALAS-2022-1558)
2022-01-19 00:00:00
Ubuntu 18.04 LTS / 20.04 LTS : BusyBox vulnerabilities (USN-5179-1)
2021-12-08 00:00:00
veracode
veracode
Use-After-Free
2021-11-12 08:52:01
prion
prion
Design/Logic Flaw
2021-11-15 21:15:00
ubuntucve
ubuntucve
CVE-2021-42378
2021-11-15 00:00:00
nvd
nvd
CVE-2021-42378
2021-11-15 21:15:07
redhatcve
redhatcve
CVE-2021-42378
2021-11-16 19:17:40
alpinelinux
alpinelinux
CVE-2021-42378
2021-11-15 21:15:07
cve
cve
CVE-2021-42378
2021-11-15 21:15:07
amazon
amazon
Medium: busybox
2022-01-18 20:13:00
redos
redos
ROS-20211223-07
2021-12-23 00:00:00
cloudfoundry
cloudfoundry
USN-5179-1: BusyBox vulnerabilities | Cloud Foundry
2022-01-20 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-5179-1)
2021-12-08 00:00:00
Huawei EulerOS: Security Advisory for busybox (EulerOS-SA-2022-1472)
2022-04-20 00:00:00
Huawei EulerOS: Security Advisory for busybox (EulerOS-SA-2022-1463)
2022-04-20 00:00:00
ubuntu
ubuntu
BusyBox vulnerabilities
2021-12-07 00:00:00
mageia
mageia
Updated busybox packages fix security vulnerability
2021-12-02 19:49:28
fedora
fedora
[SECURITY] Fedora 33 Update: busybox-1.34.1-1.fc33
2021-11-25 01:05:24
[SECURITY] Fedora 34 Update: busybox-1.34.1-1.fc34
2021-11-25 00:59:07
thn
thn
14 New Security Flaws Found in BusyBox Linux Utility for Embedded Devices
2021-11-10 08:08:00
gentoo
gentoo
BusyBox: Multiple Vulnerabilities
2024-07-05 00:00:00
ics
ics
Siemens SCALANCE Third-Party
2023-03-21 12:00:00
βSiemens SINAMICS Medium Voltage Products
2023-06-15 12:00:00
Siemens SIMATIC S7-1500 TM MFP BIOS
2023-06-15 12:00:00
suse
suse
Security update for busybox (important)
2022-05-18 00:00:00
ibm
ibm
avleonov
avleonov