Release Info

Advisory: CLSA-2021:1635459154

OS: Ubuntu 16.04 ELS

Public date: 2021-10-28 00:00:00

Project: busybox

Version: 1:1.22.0-15ubuntu1.5

Errata link: https://errata.cloudlinux.com/ubuntu16-els/CLSA-2021-1635459154.html

Changelog

* SECURITY UPDATE: operation on invalid pointer - debian/patches/CVE-2021-28831.patch: decompress_gunzip.c mishandles the error bit on the huft_build result pointer, with a resultant invalid free or segmentation fault, via malformed gzip data. - CVE-2021-28831

Update

Packages list

busybox_1.22.0-15ubuntu1.5_amd64.deb busybox-initramfs_1.22.0-15ubuntu1.5_amd64.deb busybox-static_1.22.0-15ubuntu1.5_amd64.deb busybox-syslogd_1.22.0-15ubuntu1.5_all.deb udhcpc_1.22.0-15ubuntu1.5_amd64.deb udhcpd_1.22.0-15ubuntu1.5_amd64.deb

CVEs

CVE-2021-28831