TEMP-0803097-A74121

NameTEMP-0803097-A74121
Descriptionbusybox: pointer misuse unziping files
SourceAutomatically generated temporary name. Not for external reference.
Debian Bugs803097

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
busybox (PTS)wheezy1:1.20.0-7vulnerable
jessie1:1.22.0-9+deb8u1vulnerable
stretch, buster1:1.22.0-19vulnerable
sid1:1.27.2-1vulnerable

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
busyboxsource(unstable)(unfixed)803097
busyboxsourcesqueeze1:1.17.1-8+deb6u11

Notes

[stretch] - busybox <no-dsa> (Minor issue)
[jessie] - busybox <no-dsa> (Minor issue)
[wheezy] - busybox <no-dsa> (Minor issue)
workaround entry for DLA-337-1 until/if CVE assigned
CVE Request: http://www.openwall.com/lists/oss-security/2015/10/25/3
http://git.busybox.net/busybox/commit/?id=1de25a6e87e0e627aa34298105a3d17c60a1f44e

Search for package or bug name: Reporting problems