It was discovered that BusyBox incorrectly handled certain malformed gzip archives. If a user or automated system were tricked into processing a specially crafted gzip archive, a remote attacker could use this issue to cause BusyBox to crash, resulting in a denial of service, or execute arbitrary code. This issue only affected Ubuntu 14.04 LTS. (CVE-2021-28831)
It was discovered that BusyBox did not properly validate user input when performing certain arithmetic operations. If a user or automated system were tricked into processing a specially crafted file, an attacker could possibly use this issue to cause BusyBox to crash, resulting in a denial of service, or execute arbitrary code. (CVE-2022-48174)
{ "binaries": [ { "binary_name": "busybox", "binary_version": "1:1.21.0-1ubuntu1.4+esm1" }, { "binary_name": "busybox-dbgsym", "binary_version": "1:1.21.0-1ubuntu1.4+esm1" }, { "binary_name": "busybox-initramfs", "binary_version": "1:1.21.0-1ubuntu1.4+esm1" }, { "binary_name": "busybox-initramfs-dbgsym", "binary_version": "1:1.21.0-1ubuntu1.4+esm1" }, { "binary_name": "busybox-static", "binary_version": "1:1.21.0-1ubuntu1.4+esm1" }, { "binary_name": "busybox-static-dbgsym", "binary_version": "1:1.21.0-1ubuntu1.4+esm1" }, { "binary_name": "busybox-syslogd", "binary_version": "1:1.21.0-1ubuntu1.4+esm1" }, { "binary_name": "busybox-udeb", "binary_version": "1:1.21.0-1ubuntu1.4+esm1" }, { "binary_name": "busybox-udeb-dbgsym", "binary_version": "1:1.21.0-1ubuntu1.4+esm1" }, { "binary_name": "udhcpc", "binary_version": "1:1.21.0-1ubuntu1.4+esm1" }, { "binary_name": "udhcpd", "binary_version": "1:1.21.0-1ubuntu1.4+esm1" } ], "availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro" }
{ "binaries": [ { "binary_name": "busybox", "binary_version": "1:1.22.0-15ubuntu1.4+esm2" }, { "binary_name": "busybox-dbgsym", "binary_version": "1:1.22.0-15ubuntu1.4+esm2" }, { "binary_name": "busybox-initramfs", "binary_version": "1:1.22.0-15ubuntu1.4+esm2" }, { "binary_name": "busybox-initramfs-dbgsym", "binary_version": "1:1.22.0-15ubuntu1.4+esm2" }, { "binary_name": "busybox-static", "binary_version": "1:1.22.0-15ubuntu1.4+esm2" }, { "binary_name": "busybox-static-dbgsym", "binary_version": "1:1.22.0-15ubuntu1.4+esm2" }, { "binary_name": "busybox-syslogd", "binary_version": "1:1.22.0-15ubuntu1.4+esm2" }, { "binary_name": "busybox-udeb", "binary_version": "1:1.22.0-15ubuntu1.4+esm2" }, { "binary_name": "busybox-udeb-dbgsym", "binary_version": "1:1.22.0-15ubuntu1.4+esm2" }, { "binary_name": "udhcpc", "binary_version": "1:1.22.0-15ubuntu1.4+esm2" }, { "binary_name": "udhcpd", "binary_version": "1:1.22.0-15ubuntu1.4+esm2" } ], "availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro" }
{ "binaries": [ { "binary_name": "busybox", "binary_version": "1:1.27.2-2ubuntu3.4+esm1" }, { "binary_name": "busybox-dbgsym", "binary_version": "1:1.27.2-2ubuntu3.4+esm1" }, { "binary_name": "busybox-initramfs", "binary_version": "1:1.27.2-2ubuntu3.4+esm1" }, { "binary_name": "busybox-initramfs-dbgsym", "binary_version": "1:1.27.2-2ubuntu3.4+esm1" }, { "binary_name": "busybox-static", "binary_version": "1:1.27.2-2ubuntu3.4+esm1" }, { "binary_name": "busybox-static-dbgsym", "binary_version": "1:1.27.2-2ubuntu3.4+esm1" }, { "binary_name": "busybox-syslogd", "binary_version": "1:1.27.2-2ubuntu3.4+esm1" }, { "binary_name": "busybox-udeb", "binary_version": "1:1.27.2-2ubuntu3.4+esm1" }, { "binary_name": "udhcpc", "binary_version": "1:1.27.2-2ubuntu3.4+esm1" }, { "binary_name": "udhcpd", "binary_version": "1:1.27.2-2ubuntu3.4+esm1" } ], "availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro" }