CVE-2021-42384

Опубликовано: 15 нояб. 2021

Источник: ubuntu

Приоритет: low

EPSS Низкий

CVSS2: 6.5

CVSS3: 7.2

Описание

A use-after-free in Busybox's awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the handle_special function

Релиз	Статус	Примечание
bionic	released	1:1.27.2-2ubuntu3.4
devel	released	1:1.30.1-7ubuntu2
esm-infra-legacy/trusty	ignored	see notes
esm-infra/bionic	released	1:1.27.2-2ubuntu3.4
esm-infra/focal	released	1:1.30.1-4ubuntu6.4
esm-infra/xenial	ignored	see notes
focal	released	1:1.30.1-4ubuntu6.4
hirsute	released	1:1.30.1-6ubuntu2.1
impish	released	1:1.30.1-6ubuntu3.1
jammy	released	1:1.30.1-7ubuntu2

Показывать по

Ссылки на источники

EPSS

Процентиль: 47%

0.00237

Низкий

6.5 Medium

CVSS2

7.2 High

CVSS3

Связанные уязвимости

CVE-2021-42384

CVSS3: 6.6

redhat

около 4 лет назад

A use-after-free in Busybox's awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the handle_special function

CVE-2021-42384

CVSS3: 7.2

nvd

около 4 лет назад

A use-after-free in Busybox's awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the handle_special function

CVE-2021-42384

CVSS3: 7.2

msrc

около 4 лет назад

A use-after-free in Busybox's awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the handle_special function

CVE-2021-42384

CVSS3: 7.2

debian

около 4 лет назад

A use-after-free in Busybox's awk applet leads to denial of service an ...

GHSA-8cjp-pfr2-hjwj

CVSS3: 7.2

github

больше 3 лет назад

A use-after-free in Busybox's awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the handle_special function

EPSS

Процентиль: 47%

0.00237

Низкий

6.5 Medium

CVSS2

7.2 High

CVSS3

CVE-2021-42384

Описание

Пакет busybox

Ссылки на источники

Связанные уязвимости