VulnerableCode Package Details - pkg:alpm/archlinux/busybox@1.28.1-1

Search for packages

Package details: pkg:alpm/archlinux/busybox@1.28.1-1

Essentials
History (3)

purl	pkg:alpm/archlinux/busybox@1.28.1-1

Vulnerabilities affecting this package (0)

Vulnerability	Summary	Fixed by
This package is not known to be affected by vulnerabilities.

Vulnerabilities fixed by this package (1)

Vulnerability	Summary	Aliases
VCID-f3jw-qwjt-aaas	In the add_match function in libbb/lineedit.c in BusyBox through 1.27.2, the tab autocomplete feature of the shell, used to get a list of filenames in a directory, does not sanitize filenames and results in executing any escape sequence in the terminal. This could potentially result in code execution, arbitrary file writes, or other attacks.	CVE-2017-16544

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-03-28T07:46:08.588008+00:00	Arch Linux Importer	Fixing	VCID-f3jw-qwjt-aaas	https://security.archlinux.org/AVG-512	36.0.0
2024-09-18T02:01:17.386603+00:00	Arch Linux Importer	Fixing	VCID-f3jw-qwjt-aaas	https://security.archlinux.org/AVG-512	34.0.1
2024-01-03T22:27:28.630135+00:00	Arch Linux Importer	Fixing	VCID-f3jw-qwjt-aaas	https://security.archlinux.org/AVG-512	34.0.0rc1