A use-after-free vulnerability was discovered in xasprintf function in xfuncs_printf.c:344 in BusyBox v.1.36.1.
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "binary_version": "1:1.36.1-6ubuntu4", "binary_name": "busybox" }, { "binary_version": "1:1.36.1-6ubuntu4", "binary_name": "busybox-dbgsym" }, { "binary_version": "1:1.36.1-6ubuntu4", "binary_name": "busybox-initramfs" }, { "binary_version": "1:1.36.1-6ubuntu4", "binary_name": "busybox-initramfs-dbgsym" }, { "binary_version": "1:1.36.1-6ubuntu4", "binary_name": "busybox-static" }, { "binary_version": "1:1.36.1-6ubuntu4", "binary_name": "busybox-static-dbgsym" }, { "binary_version": "1:1.36.1-6ubuntu4", "binary_name": "busybox-syslogd" }, { "binary_version": "1:1.36.1-6ubuntu4", "binary_name": "udhcpc" }, { "binary_version": "1:1.36.1-6ubuntu4", "binary_name": "udhcpd" } ] }
{ "availability": "No subscription required", "ubuntu_priority": "medium", "binaries": [ { "binary_version": "1:1.36.1-6ubuntu3.1", "binary_name": "busybox" }, { "binary_version": "1:1.36.1-6ubuntu3.1", "binary_name": "busybox-dbgsym" }, { "binary_version": "1:1.36.1-6ubuntu3.1", "binary_name": "busybox-initramfs" }, { "binary_version": "1:1.36.1-6ubuntu3.1", "binary_name": "busybox-initramfs-dbgsym" }, { "binary_version": "1:1.36.1-6ubuntu3.1", "binary_name": "busybox-static" }, { "binary_version": "1:1.36.1-6ubuntu3.1", "binary_name": "busybox-static-dbgsym" }, { "binary_version": "1:1.36.1-6ubuntu3.1", "binary_name": "busybox-syslogd" }, { "binary_version": "1:1.36.1-6ubuntu3.1", "binary_name": "udhcpc" }, { "binary_version": "1:1.36.1-6ubuntu3.1", "binary_name": "udhcpd" } ] }