rpm package
suse/busybox&distro=SUSE Linux Enterprise Server 12
pkg:rpm/suse/busybox&distro=SUSE%20Linux%20Enterprise%20Server%2012
Vulnerabilities (1)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2014-9645 | Med | 5.5 | < 1.21.1-3.3 | 1.21.1-3.3 | Mar 12, 2017 | The add_probe function in modutils/modprobe.c in BusyBox before 1.23.0 allows local users to bypass intended restrictions on loading kernel modules via a / (slash) character in a module name, as demonstrated by an "ifconfig /usbserial up" command or a "mount -t /snd_pcm none /" c |
- affected < 1.21.1-3.3fixed 1.21.1-3.3
The add_probe function in modutils/modprobe.c in BusyBox before 1.23.0 allows local users to bypass intended restrictions on loading kernel modules via a / (slash) character in a module name, as demonstrated by an "ifconfig /usbserial up" command or a "mount -t /snd_pcm none /" c