Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2021-42383

Опубликовано: 15 нояб. 2021
Источник: debian

Описание

A use-after-free in Busybox's awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the evaluate function

Пакеты

ПакетСтатусВерсия исправленияРелизТип
busyboxfixed1:1.35.0-1package
busyboxpostponedbullseyepackage
busyboxpostponedbusterpackage
busyboxpostponedstretchpackage

Примечания

  • https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/

Связанные уязвимости

ubuntu логотип

CVE-2021-42383

CVSS3: 7.2
ubuntu
около 4 лет назад

A use-after-free in Busybox's awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the evaluate function

redhat логотип

CVE-2021-42383

CVSS3: 6.6
redhat
около 4 лет назад

A use-after-free in Busybox's awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the evaluate function

nvd логотип

CVE-2021-42383

CVSS3: 7.2
nvd
около 4 лет назад

A use-after-free in Busybox's awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the evaluate function

github логотип

GHSA-xhv3-6p64-vccw

CVSS3: 7.2
github
больше 3 лет назад

A use-after-free in Busybox's awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the evaluate function

fstec логотип

BDU:2025-05991

CVSS3: 7.2
fstec
около 4 лет назад

Уязвимость функции evaluate набора утилит командной строки BusyBox, позволяющая нарушителю вызвать отказ в обслуживании