| Revision Date: | 2021-10-27 | Version: | 1 |
| Title: | Security update for busybox (Important) |
| Description: |
This update for busybox fixes the following issues:
- CVE-2021-28831: Fixed invalid free or segmentation fault via malformed gzip data (bsc#1184522). - CVE-2018-20679: Fixed out of bounds read in udhcp (bsc#1121426). - CVE-2018-1000517: Fixed buffer overflow in the retrieve_file_data() (bsc#1099260). - CVE-2011-5325: Fixed a directory traversal related to 'tar' command (bsc#951562). - CVE-2018-1000500: Fixed missing SSL certificate validation related to the 'wget' command (bsc#1099263).
|
| Family: | unix | Class: | patch |
| Status: | | Reference(s): | 1099260
1099263
1121426
1184522
951562
CVE-2011-5325
CVE-2018-1000500
CVE-2018-1000517
CVE-2018-20679
CVE-2019-9704
CVE-2021-28831
SUSE-SU-2021:3531-1
|
| Platform(s): | openSUSE Tumbleweed
SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS
| Product(s): | |
| Definition Synopsis |
| openSUSE Tumbleweed is installed AND Package Information
cron-4.2-86.1 is installed
OR cronie-1.5.7-86.1 is installed
OR cronie-anacron-1.5.7-86.1 is installed
|
| Definition Synopsis |
| SUSE Linux Enterprise High Performance Computing 15 SP1-ESPOS is installed
AND Package Information
busybox-1.26.2-4.5.1 is installed
OR busybox-static-1.26.2-4.5.1 is installed
|