CVE-2016-2147Integer Overflow or Wraparound in Busybox

CWE-190Integer Overflow or WraparoundCWE-787Out-of-bounds Write9 documents7 sources
Severity
7.5HIGHNVD
EPSS
8.3%
top 7.74%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
4
BusyboxDebian BusyboxCanonical Ubuntu Linux+1 more
Timeline
PublishedFeb 9
Latest updateMay 13

Description

Integer overflow in the DHCP client (udhcpc) in BusyBox before 1.25.0 allows remote attackers to cause a denial of service (crash) via a malformed RFC1035-encoded domain name, which triggers an out-of-bounds heap write.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6

Affected Packages4 packages

debiandebian/busybox< busybox 1:1.27.2-1 (bookworm)
Debianbusybox/busybox< 1:1.27.2-1+3
Ubuntubusybox/busybox< 1:1.21.0-1ubuntu1.4+2
NVDbusybox/busybox1.24.2

Also affects: Debian Linux 8.0, 9.0, Ubuntu Linux 14.04, 16.04, 18.04, 18.10

Patches

Patch: www.openwall.comPatch: git.busybox.netPatch: www.openwall.com

🔴Vulnerability Details

3
GHSA
GHSA-3wxp-8cgp-vmq4: Integer overflow in the DHCP client (udhcpc) in BusyBox before 12022-05-13
OSV
busybox vulnerabilities2019-04-03
OSV
CVE-2016-2147: Integer overflow in the DHCP client (udhcpc) in BusyBox before 12017-02-09

📋Vendor Advisories

3
Ubuntu
BusyBox vulnerabilities2019-04-03
Red Hat
busybox: out of bounds write (heap) due to integer underflow in udhcpc2016-03-10
Debian
CVE-2016-2147: busybox - Integer overflow in the DHCP client (udhcpc) in BusyBox before 1.25.0 allows rem...2016

💬Community

2
Bugzilla
CVE-2016-2147 CVE-2016-2148 busybox: various flaws [fedora-all]2016-03-10
Bugzilla
CVE-2016-2147 busybox: out of bounds write (heap) due to integer underflow in udhcpc2016-03-10