DEBIAN-CVE-2026-29004

See a problem?
Please try reporting it to the source first.

Source

https://security-tracker.debian.org/tracker/CVE-2026-29004

Import Source

https://storage.googleapis.com/osv-test-debian-osv/debian-cve-osv/DEBIAN-CVE-2026-29004.json

JSON Data

https://api.test.osv.dev/v1/vulns/DEBIAN-CVE-2026-29004

Upstream

CVE-2026-29004

Published

2026-05-04T18:16:26.523Z

Modified

2026-05-07T09:02:57.892736Z

Severity

7.2 (High) CVSS_V4 - CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X CVSS Calculator

Summary

[none]

Details

BusyBox before commit 42202bf contains a heap buffer overflow vulnerability in the DHCPv6 client (udhcpc6) DNSSERVERS option handler in networking/udhcp/d6dhcpc.c that allows network-adjacent attackers to trigger memory corruption by sending a crafted DHCPv6 response with a malformed D6OPTDNSSERVERS option. Attackers can exploit incorrect heap buffer allocation calculations in the optionto_env() function to cause denial of service or achieve arbitrary code execution on embedded systems without heap hardening.

References

https://security-tracker.debian.org/tracker/CVE-2026-29004

Affected packages

Debian:11 / busybox

Package

Name: busybox
Purl: pkg:deb/debian/busybox?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

1:1.*

1:1.30.1-6

1:1.30.1-6+deb11u1

1:1.30.1-7

1:1.35.0-1

1:1.35.0-2

1:1.35.0-2+hurd.1

1:1.35.0-2+hurd.2

1:1.35.0-3

1:1.35.0-4

1:1.36.0-1~exp1

1:1.36.1-1

1:1.36.1-2

1:1.36.1-3

1:1.36.1-3.1

1:1.36.1-4

1:1.36.1-5

1:1.36.1-6~exp.1

1:1.36.1-6

1:1.36.1-7

1:1.36.1-8

1:1.36.1-9

1:1.37.0-1

1:1.37.0-2

1:1.37.0-3

1:1.37.0-4

1:1.37.0-5

1:1.37.0-6

1:1.37.0-7

1:1.37.0-8

1:1.37.0-9

1:1.37.0-10

1:1.37.0-10.1

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Database specific

source

"https://storage.googleapis.com/osv-test-debian-osv/debian-cve-osv/DEBIAN-CVE-2026-29004.json"

Debian:12 / busybox

Package

Name: busybox
Purl: pkg:deb/debian/busybox?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

1:1.*

1:1.35.0-4

1:1.35.0-4+deb12u1

1:1.36.0-1~exp1

1:1.36.1-1

1:1.36.1-2

1:1.36.1-3

1:1.36.1-3.1

1:1.36.1-4

1:1.36.1-5

1:1.36.1-6~exp.1

1:1.36.1-6

1:1.36.1-7

1:1.36.1-8

1:1.36.1-9

1:1.37.0-1

1:1.37.0-2

1:1.37.0-3

1:1.37.0-4

1:1.37.0-5

1:1.37.0-6

1:1.37.0-7

1:1.37.0-8

1:1.37.0-9

1:1.37.0-10

1:1.37.0-10.1

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Database specific

source

"https://storage.googleapis.com/osv-test-debian-osv/debian-cve-osv/DEBIAN-CVE-2026-29004.json"

Debian:13 / busybox

Package

Name: busybox
Purl: pkg:deb/debian/busybox?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

1:1.*

1:1.37.0-6

1:1.37.0-7

1:1.37.0-8

1:1.37.0-9

1:1.37.0-10

1:1.37.0-10.1

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Database specific

source

"https://storage.googleapis.com/osv-test-debian-osv/debian-cve-osv/DEBIAN-CVE-2026-29004.json"

Debian:14 / busybox

Package

Name: busybox
Purl: pkg:deb/debian/busybox?arch=source

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Affected versions

1:1.*

1:1.37.0-6

1:1.37.0-7

1:1.37.0-8

1:1.37.0-9

1:1.37.0-10

1:1.37.0-10.1

Ecosystem specific

{
    "urgency": "not yet assigned"
}

Database specific

source

"https://storage.googleapis.com/osv-test-debian-osv/debian-cve-osv/DEBIAN-CVE-2026-29004.json"