Oval Definition:oval:org.opensuse.security:def:73912
Revision Date:2021-10-27Version:1
Title:Security update for busybox (Important)
Description:

This update for busybox fixes the following issues:

- CVE-2021-28831: Fixed invalid free or segmentation fault via malformed gzip data (bsc#1184522). - CVE-2018-20679: Fixed out of bounds read in udhcp (bsc#1121426). - CVE-2018-1000517: Fixed buffer overflow in the retrieve_file_data() (bsc#1099260). - CVE-2011-5325: Fixed a directory traversal related to 'tar' command (bsc#951562). - CVE-2018-1000500: Fixed missing SSL certificate validation related to the 'wget' command (bsc#1099263).
Family:unixClass:patch
Status:Reference(s):1099260
1099263
1121426
1173159
1178666
1178667
1178668
1184522
951562
CVE-2011-5325
CVE-2018-1000500
CVE-2018-1000517
CVE-2018-20679
CVE-2020-10730
CVE-2020-25694
CVE-2020-25695
CVE-2020-25696
CVE-2021-28831
SUSE-SU-2021:3531-1
Platform(s):SUSE Linux Enterprise Desktop 15 SP3
SUSE Linux Enterprise High Performance Computing 15 SP3
SUSE Linux Enterprise Module for Basesystem 15 SP3
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2
SUSE Linux Enterprise Server 15 SP3
SUSE Linux Enterprise Server for SAP Applications 15 SP3
SUSE Manager Proxy 4.2
SUSE Manager Server 4.2
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP2 is installed
  • AND Package Information
  • ldb-1.4.6-3.5 is installed
  • OR libldb1-32bit-1.4.6-3.5 is installed
  • OR python-ldb-32bit-1.4.6-3.5 is installed
  • OR python-ldb-devel-1.4.6-3.5 is installed
    • Definition Synopsis
  • SUSE Linux Enterprise Module for Basesystem 15 SP3 is installed
  • AND Package Information
  • busybox-1.26.2-4.5.1 is installed
  • OR busybox-static-1.26.2-4.5.1 is installed
    • BACK