Wind River Support Network

HomeDefectsLIN1019-10649

Acknowledged

LIN1019-10649 : Security Advisory - busybox - CVE-2023-42363

Created: Nov 27, 2023 Updated: Nov 29, 2023

Found In Version: 10.19.45.1

Severity: Standard

Applicable for: Wind River Linux LTS 19

Component/s: Userspace

Description

A use-after-free vulnerability was discovered in xasprintf function in xfuncs_printf.c:344 in BusyBox v.1.36.1.

CREATE(Triage):(User=admin) CVE-2023-42363 (https://nvd.nist.gov/vuln/detail/CVE-2023-42363)