Описание
Security update for busybox
This update for busybox fixes the following issues:
- CVE-2022-30065: Fixed use-after-free in the AWK applet (bsc#1199744).
Список пакетов
SUSE Linux Enterprise Server 12 SP5
busybox-1.35.0-4.6.2
SUSE Linux Enterprise Server for SAP Applications 12 SP5
busybox-1.35.0-4.6.2
Ссылки
- Link for SUSE-SU-2022:4372-1
- E-Mail link for SUSE-SU-2022:4372-1
- SUSE Security Ratings
- SUSE Bug 1199744
- SUSE CVE CVE-2022-30065 page
Описание
A use-after-free in Busybox 1.35-x's awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the copyvar function.
Затронутые продукты
SUSE Linux Enterprise Server 12 SP5:busybox-1.35.0-4.6.2
SUSE Linux Enterprise Server for SAP Applications 12 SP5:busybox-1.35.0-4.6.2
Ссылки
- CVE-2022-30065
- SUSE Bug 1199744