Multiple vulnerabilities have been discovered in BusyBox, the worst of which could lead to arbitrary code execution.
Package | sys-apps/busybox on all architectures |
---|---|
Affected versions | < 1.34.0 |
Unaffected versions | >= 1.34.0 |
BusyBox is set of tools for embedded systems and is a replacement for GNU Coreutils.
Multiple vulnerabilities have been discovered in BusyBox. Please review the CVE identifiers referenced below for details.
Please review the referenced CVE identifiers for details.
There is no known workaround at this time.
All BusyBox users should upgrade to the latest version:
# emerge --sync # emerge --ask --oneshot --verbose ">=sys-apps/busybox-1.34.0"
Release date
July 05, 2024
Latest revision
July 05, 2024: 1
Severity
normal
Exploitable
local
Bugzilla entries