CVE-2021-42382
Summary
| CVE | CVE-2021-42382 |
|---|
| State | PUBLIC |
|---|
| Assigner | [email protected] |
|---|
| Source Priority | CVE Program / NVD first with legacy fallback |
|---|
| Published | 2021-11-15 21:15:00 UTC |
|---|
| Updated | 2023-11-07 03:39:00 UTC |
|---|
| Description | A use-after-free in Busybox's awk applet leads to denial of service and possibly code execution when processing a crafted awk pattern in the getvar_s function |
|---|
NVD Known Affected Configurations (CPE 2.3)
References
| Reference | Source | Link | Tags |
|---|
| November 2021 BusyBox Vulnerabilities in NetApp Products | NetApp Product Security |
CONFIRM |
security.netapp.com |
|
| Unboxing BusyBox - 14 new vulnerabilities uncovered by Claroty and JFrog | JFrog |
N/A |
jfrog.com |
Third Party Advisory |
| [SECURITY] Fedora 33 Update: busybox-1.34.1-1.fc33 - package-announce - Fedora Mailing-Lists |
FEDORA |
lists.fedoraproject.org |
|
| Unboxing BusyBox: 14 Vulnerabilities Uncovered by Claroty, JFrog | Claroty |
MISC |
claroty.com |
|
| [SECURITY] Fedora 33 Update: busybox-1.34.1-1.fc33 - package-announce - Fedora Mailing-Lists |
|
lists.fedoraproject.org |
|
| FEDORA-2021-c52c0fe490 |
FEDORA |
lists.fedoraproject.org |
|
| [SECURITY] Fedora 34 Update: busybox-1.34.1-1.fc34 - package-announce - Fedora Mailing-Lists |
|
lists.fedoraproject.org |
|
| CVE Program record |
CVE.ORG |
www.cve.org |
canonical |
| NVD vulnerability detail |
NVD |
nvd.nist.gov |
canonical, analysis |
No vendor comments have been submitted for this CVE.
Legacy QID Mappings
- 181967 Debian Security Update for busybox (CVE-2021-42382)
- 198599 Ubuntu Security Notification for BusyBox Vulnerabilities (USN-5179-1)
- 282073 Fedora Security Update for busybox (FEDORA-2021-c52c0fe490)
- 282074 Fedora Security Update for busybox (FEDORA-2021-5a95823596)
- 500082 Alpine Linux Security Update for busybox
- 501387 Alpine Linux Security Update for busybox
- 501735 Alpine Linux Security Update for busybox
- 501950 Alpine Linux Security Update for busybox
- 503876 Alpine Linux Security Update for busybox
- 671364 EulerOS Security Update for busybox (EulerOS-SA-2022-1303)
- 671377 EulerOS Security Update for busybox (EulerOS-SA-2022-1287)
- 671487 EulerOS Security Update for busybox (EulerOS-SA-2022-1472)
- 671518 EulerOS Security Update for busybox (EulerOS-SA-2022-1463)
- 730371 McAfee Web Gateway Multiple Vulnerabilities (WP-3335,WP-4131,WP-4159,WP-4237,WP-4259,WP-4329,WP-4348,WP-4355,WP-4376,WP-4407,WP-4421)
- 751624 SUSE Enterprise Linux Security Update for busybox (SUSE-SU-2022:0135-1)
- 751633 OpenSUSE Security Update for busybox (openSUSE-SU-2022:0135-1)
- 752794 SUSE Enterprise Linux Security Update for busybox (SUSE-SU-2022:3959-1)
- 752903 SUSE Enterprise Linux Security Update for busybox (SUSE-SU-2022:4253-1)
- 900412 Common Base Linux Mariner (CBL-Mariner) Security Update for busybox (6191)
- 900996 Common Base Linux Mariner (CBL-Mariner) Security Update for busybox (6349-1)
