Debian Busybox vulnerabilities

CVE-2014-9645 [MEDIUM] CVE-2014-9645: busybox - The add_probe function in modutils/modprobe.c in BusyBox before 1.23.0 allows lo... The add_probe function in modutils/modprobe.c in BusyBox before 1.23.0 allows local users to bypass intended restrictions on loading kernel modules via a / (slash) character in a module name, as demonstrated by an "ifconfig /usbserial up" command or a "mount -t /snd_pcm none /" command. Scope: local bookworm: resolved (fixed in 1:1.22.0-15) bullseye: resolved (fixed

CVE-2013-1813 [HIGH] CVE-2013-1813: busybox - util-linux/mdev.c in BusyBox before 1.21.0 uses 0777 permissions for parent dire... util-linux/mdev.c in BusyBox before 1.21.0 uses 0777 permissions for parent directories when creating nested directories under /dev/, which allows local users to have unknown impact and attack vectors. Scope: local bookworm: resolved (fixed in 1:1.20.0-8) bullseye: resolved (fixed in 1:1.20.0-8) forky: resolved (fixed in 1:1.20.0-8) sid: resolved (fixed in 1:1.20.0-8)

CVE-2011-5325 [HIGH] CVE-2011-5325: busybox - Directory traversal vulnerability in the BusyBox implementation of tar before 1.... Directory traversal vulnerability in the BusyBox implementation of tar before 1.22.0 v5 allows remote attackers to point to files outside the current working directory via a symlink. Scope: local bookworm: resolved (fixed in 1:1.27.2-1) bullseye: resolved (fixed in 1:1.27.2-1) forky: resolved (fixed in 1:1.27.2-1) sid: resolved (fixed in 1:1.27.2-1) trixie: resolved (

CVE-2011-2716 [MEDIUM] CVE-2011-2716: busybox - The DHCP client (udhcpc) in BusyBox before 1.20.0 allows remote DHCP servers to ... The DHCP client (udhcpc) in BusyBox before 1.20.0 allows remote DHCP servers to execute arbitrary commands via shell metacharacters in the (1) HOST_NAME, (2) DOMAIN_NAME, (3) NIS_DOMAIN, and (4) TFTP_SERVER_NAME host name options. Scope: local bookworm: resolved (fixed in 1:1.20.0-3) bullseye: resolved (fixed in 1:1.20.0-3) forky: resolved (fixed in 1:1.20.0-3) sid:

CVE-2010-0001 [MEDIUM] CVE-2010-0001: busybox - Integer underflow in the unlzw function in unlzw.c in gzip before 1.4 on 64-bit ... Integer underflow in the unlzw function in unlzw.c in gzip before 1.4 on 64-bit platforms, as used in ncompress and probably others, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted archive that uses LZW compression, leading to an array index error. Scope: local bookworm: resolved bullseye: res

CVE-2006-1058 [MEDIUM] CVE-2006-1058: busybox - BusyBox 1.1.1 does not use a salt when generating passwords, which makes it easi... BusyBox 1.1.1 does not use a salt when generating passwords, which makes it easier for local users to guess passwords from a stolen password file using techniques such as rainbow tables. Scope: local bookworm: resolved (fixed in 1:1.1.3-1) bullseye: resolved (fixed in 1:1.1.3-1) forky: resolved (fixed in 1:1.1.3-1) sid: resolved (fixed in 1:1.1.3-1) trixie: resolved

CVE-2006-5050 [MEDIUM] CVE-2006-5050: busybox - Directory traversal vulnerability in httpd in Rob Landley BusyBox allows remote ... Directory traversal vulnerability in httpd in Rob Landley BusyBox allows remote attackers to read arbitrary files via URL-encoded "%2e%2e/" sequences in the URI. Scope: local bookworm: resolved bullseye: resolved forky: resolved sid: resolved trixie: resolved