Oval Definition:oval:com.ubuntu.bionic:def:20195747000
Revision Date:2019-01-09Version:1
Title:CVE-2019-5747 on Ubuntu 18.04 LTS (bionic) - medium.
Description:An issue was discovered in BusyBox through 1.30.0. An out of bounds read in udhcp components (consumed by the DHCP server, client, and/or relay) might allow a remote attacker to leak sensitive information from the stack by sending a crafted DHCP message. This is related to assurance of a 4-byte length when decoding DHCP_SUBNET. NOTE: this issue exists because of an incomplete fix for CVE-2018-20679.
Family:unixClass:vulnerability
Status:Reference(s):CVE-2019-5747
Platform(s):Ubuntu 18.04 LTS
Product(s):
Definition Synopsis
  • Ubuntu 18.04 LTS (bionic) is installed.
  • AND The 'busybox' package in bionic was vulnerable but has been fixed (note: '1:1.27.2-2ubuntu3.2').
  • BACK