Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:USN-5179-1
HistoryDec 07, 2021 - 12:44 p.m.

busybox vulnerabilities

2021-12-0712:44:40
Google
osv.dev
7

7.2 High

AI Score

Confidence

High

0.008 Low

EPSS

Percentile

81.3%

JSON

It was discovered that BusyBox incorrectly handled certain malformed gzip
archives. If a user or automated system were tricked into processing a
specially crafted gzip archive, a remote attacker could use this issue to
cause BusyBox to crash, resulting in a denial of service, or possibly
execute arbitrary code. (CVE-2021-28831)

It was discovered that BusyBox incorrectly handled certain malformed LZMA
archives. If a user or automated system were tricked into processing a
specially crafted LZMA archive, a remote attacker could use this issue to
cause BusyBox to crash, resulting in a denial of service, or possibly
leak sensitive information. (CVE-2021-42374)

Vera Mens, Uri Katz, Tal Keren, Sharon Brizinov, and Shachar Menashe
discovered that BusyBox incorrectly handled certain awk patterns. If a user
or automated system were tricked into processing a specially crafted awk
pattern, a remote attacker could use this issue to cause BusyBox to crash,
resulting in a denial of service, or possibly execute arbitrary code.
(CVE-2021-42378, CVE-2021-42379, CVE-2021-42380, CVE-2021-42381,
CVE-2021-42382, CVE-2021-42384, CVE-2021-42385, CVE-2021-42386)

Related

cloudfoundry 1
nessus 29
ubuntu 2
redos 3
openvas 23
mageia 1
fedora 5
amazon 2
thn 1
ics 2
threatpost 1
suse 1
cbl_mariner 20
cve 10
debiancve 10
ubuntucve 10
osv 11
cvelist 10
redhatcve 10
alpinelinux 10
nvd 10
veracode 10
archlinux 2
debian 1
prion 10
cnvd 2
ibm 1
gentoo 1
cloudfoundry
cloudfoundry
USN-5179-1: BusyBox vulnerabilities | Cloud Foundry
2022-01-20 00:00:00
nessus
nessus
Ubuntu 18.04 LTS / 20.04 LTS : BusyBox vulnerabilities (USN-5179-1)
2021-12-08 00:00:00
EulerOS 2.0 SP9 : busybox (EulerOS-SA-2022-1287)
2022-03-02 00:00:00
EulerOS 2.0 SP9 : busybox (EulerOS-SA-2022-1303)
2022-03-02 00:00:00
ubuntu
ubuntu
BusyBox vulnerabilities
2021-12-07 00:00:00
BusyBox vulnerability
2022-05-10 00:00:00
redos
redos
ROS-20211223-07
2021-12-23 00:00:00
ROS-2-461
2021-12-24 00:00:00
ROS-2-818
2021-12-24 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-5179-1)
2021-12-08 00:00:00
Huawei EulerOS: Security Advisory for busybox (EulerOS-SA-2022-1303)
2022-03-02 00:00:00
Huawei EulerOS: Security Advisory for busybox (EulerOS-SA-2022-1287)
2022-03-02 00:00:00
mageia
mageia
Updated busybox packages fix security vulnerability
2021-12-02 19:49:28
fedora
fedora
[SECURITY] Fedora 34 Update: busybox-1.34.1-1.fc34
2021-11-25 00:59:07
[SECURITY] Fedora 33 Update: busybox-1.34.1-1.fc33
2021-11-25 01:05:24
[SECURITY] Fedora 32 Update: busybox-1.32.1-1.fc32
2021-04-01 01:55:13
amazon
amazon
Medium: busybox
2022-01-18 20:13:00
Medium: busybox
2021-05-06 19:11:00
thn
thn
14 New Security Flaws Found in BusyBox Linux Utility for Embedded Devices
2021-11-10 08:08:00
ics
ics
Siemens SCALANCE Third-Party
2023-03-21 12:00:00
​Siemens SINAMICS Medium Voltage Products
2023-06-15 12:00:00
threatpost
threatpost
Multiple BusyBox Security Bugs Threaten Embedded Linux Devices
2021-11-09 14:00:36
suse
suse
Security update for busybox (important)
2022-05-18 00:00:00
cbl_mariner
cbl_mariner
CVE-2021-42379 affecting package busybox 1.32.0-2
2022-01-10 03:59:19
CVE-2021-42379 affecting package busybox for versions less than 1.35.0-1
2022-04-09 06:51:46
CVE-2021-42382 affecting package busybox for versions less than 1.35.0-1
2022-04-09 06:51:46
cve
cve
CVE-2021-42382
2021-11-15 21:15:07
CVE-2021-42380
2021-11-15 21:15:07
CVE-2021-42378
2021-11-15 21:15:07
debiancve
debiancve
CVE-2021-42384
2021-11-15 21:15:08
CVE-2021-42374
2021-11-15 21:15:07
CVE-2021-42380
2021-11-15 21:15:07
ubuntucve
ubuntucve
CVE-2021-42385
2021-11-15 00:00:00
CVE-2021-42386
2021-11-15 00:00:00
CVE-2021-42384
2021-11-15 00:00:00
osv
osv
CVE-2021-42378
2021-11-15 21:15:07
CVE-2021-42380
2021-11-15 21:15:07
CVE-2021-42381
2021-11-15 21:15:07
cvelist
cvelist
CVE-2021-42378
2021-11-15 00:00:00
CVE-2021-42380
2021-11-15 00:00:00
CVE-2021-42381
2021-11-15 00:00:00
redhatcve
redhatcve
CVE-2021-42381
2021-11-16 19:44:26
CVE-2021-42374
2021-11-16 18:45:19
CVE-2021-42384
2021-11-16 19:44:39
alpinelinux
alpinelinux
CVE-2021-42380
2021-11-15 21:15:07
CVE-2021-42385
2021-11-15 21:15:08
CVE-2021-42381
2021-11-15 21:15:07
nvd
nvd
CVE-2021-42386
2021-11-15 21:15:08
CVE-2021-42380
2021-11-15 21:15:07
CVE-2021-42385
2021-11-15 21:15:08
veracode
veracode
Denial Of Service (DoS)
2021-11-12 08:52:07
Privilege Escalation
2021-11-12 08:49:18
Denial Of Service (DoS)
2021-11-12 08:49:40
archlinux
archlinux
[ASA-202103-11] mkinitcpio-busybox: denial of service
2021-03-25 00:00:00
[ASA-202103-12] busybox: denial of service
2021-03-25 00:00:00
debian
debian
[SECURITY] [DLA 2614-1] busybox security update
2021-04-01 21:59:52
prion
prion
Design/Logic Flaw
2021-11-15 21:15:00
Design/Logic Flaw
2021-11-15 21:15:00
Heap overflow
2021-11-15 21:15:00
cnvd
cnvd
Busybox Resource Management Error Vulnerability (CNVD-2021-88215)
2021-11-12 00:00:00
BusyBox buffer overflow vulnerability
2021-11-12 00:00:00
ibm
ibm
Security Bulletin: IBM QRadar Network Security is affected by Vulnerability in busybox (CVE-2021-28831)
2022-07-07 10:56:28
gentoo
gentoo
BusyBox: Denial of service
2021-05-26 00:00:00

7.2 High

AI Score

Confidence

High

0.008 Low

EPSS

Percentile

81.3%

JSON
Related for OSV:USN-5179-1
cloudfoundry1nessus29ubuntu2redos3openvas23mageia1fedora5amazon2thn1ics2threatpost1suse1cbl_mariner20cve10debiancve10ubuntucve10osv11cvelist10redhatcve10alpinelinux10nvd10veracode10archlinux2debian1prion10cnvd2ibm1gentoo1