Summary: | <sys-apps/busybox-1.34.0: multiple vulnerabilities (CVE-2021-{42373,42374,42375,42376,42377,42378,42379,42380,42381,42382,42383,42384,42385,42386}) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | John Helmert III <ajak> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | normal | CC: | embedded, gentoo.qxrin |
Priority: | Normal | Keywords: | PullRequest |
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/ | ||
See Also: | https://github.com/gentoo/gentoo/pull/26180 | ||
Whiteboard: | B2 [glsa+] | ||
Package list: | Runtime testing required: | --- | |
Bug Depends on: | 824226 | ||
Bug Blocks: |
Description
John Helmert III
2021-11-17 15:32:33 UTC
Please cleanup. The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=4953f8ef033673023485d1b05b96137166a812cf commit 4953f8ef033673023485d1b05b96137166a812cf Author: Viorel Munteanu <ceamac.paragon@gmail.com> AuthorDate: 2022-07-01 11:44:33 +0000 Commit: Sam James <sam@gentoo.org> CommitDate: 2022-07-03 23:52:43 +0000 sys-apps/busybox: drop 1.32.1-r1, 1.33.1, 1.33.1-r2 They have security issues Bug: https://bugs.gentoo.org/824222 Signed-off-by: Viorel Munteanu <ceamac.paragon@gmail.com> Closes: https://github.com/gentoo/gentoo/pull/26180 Signed-off-by: Sam James <sam@gentoo.org> sys-apps/busybox/Manifest | 2 - sys-apps/busybox/busybox-1.32.1-r1.ebuild | 337 ----------------------------- sys-apps/busybox/busybox-1.33.1-r2.ebuild | 345 ------------------------------ sys-apps/busybox/busybox-1.33.1.ebuild | 337 ----------------------------- 4 files changed, 1021 deletions(-) The bug has been referenced in the following commit(s): https://gitweb.gentoo.org/data/glsa.git/commit/?id=007d2cf2a945eb860b990e5233e6ff13c3ae497c commit 007d2cf2a945eb860b990e5233e6ff13c3ae497c Author: GLSAMaker <glsamaker@gentoo.org> AuthorDate: 2024-07-05 09:49:36 +0000 Commit: Hans de Graaff <graaff@gentoo.org> CommitDate: 2024-07-05 09:49:51 +0000 [ GLSA 202407-17 ] BusyBox: Multiple Vulnerabilities Bug: https://bugs.gentoo.org/824222 Signed-off-by: GLSAMaker <glsamaker@gentoo.org> Signed-off-by: Hans de Graaff <graaff@gentoo.org> glsa-202407-17.xml | 55 ++++++++++++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 55 insertions(+) |