CVE-2021-42383

Опубликовано: 15 нояб. 2021

Источник: ubuntu

Приоритет: low

CVSS2: 6.5

CVSS3: 7.2

Описание

A use-after-free in Busybox's awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the evaluate function

Релиз	Статус	Примечание
bionic	not-affected	1:1.27.2-2ubuntu3.3
devel	not-affected	1:1.30.1-6ubuntu3
esm-infra-legacy/trusty	not-affected
esm-infra/bionic	not-affected	1:1.27.2-2ubuntu3.3
esm-infra/focal	not-affected	1:1.30.1-4ubuntu6.3
esm-infra/xenial	not-affected
focal	not-affected	1:1.30.1-4ubuntu6.3
hirsute	not-affected	1:1.30.1-6ubuntu2
impish	not-affected	1:1.30.1-6ubuntu3
jammy	not-affected	1:1.30.1-6ubuntu3

Показывать по

Ссылки на источники

6.5 Medium

CVSS2

7.2 High

CVSS3

Связанные уязвимости

CVE-2021-42383

CVSS3: 6.6

redhat

около 4 лет назад

A use-after-free in Busybox's awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the evaluate function

CVE-2021-42383

CVSS3: 7.2

nvd

около 4 лет назад

A use-after-free in Busybox's awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the evaluate function

CVE-2021-42383

CVSS3: 7.2

debian

около 4 лет назад

A use-after-free in Busybox's awk applet leads to denial of service an ...

GHSA-xhv3-6p64-vccw

CVSS3: 7.2

github

больше 3 лет назад

A use-after-free in Busybox's awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the evaluate function

BDU:2025-05991

CVSS3: 7.2

fstec

около 4 лет назад

Уязвимость функции evaluate набора утилит командной строки BusyBox, позволяющая нарушителю вызвать отказ в обслуживании

6.5 Medium

CVSS2

7.2 High

CVSS3

CVE-2021-42383

Описание

Пакет busybox

Ссылки на источники

Связанные уязвимости