VulnerableCode Package Details - pkg:alpm/archlinux/mkinitcpio-busybox@1.27.2-1

Search for packages

Package details: pkg:alpm/archlinux/mkinitcpio-busybox@1.27.2-1

Essentials
History (3)

purl	pkg:alpm/archlinux/mkinitcpio-busybox@1.27.2-1

Next non-vulnerable version	1.28.1-1
Latest non-vulnerable version	1.34.1-1
Risk	4.0

Vulnerabilities affecting this package (1)

Vulnerability	Summary	Fixed by
VCID-f3jw-qwjt-aaas Aliases: CVE-2017-16544	In the add_match function in libbb/lineedit.c in BusyBox through 1.27.2, the tab autocomplete feature of the shell, used to get a list of filenames in a directory, does not sanitize filenames and results in executing any escape sequence in the terminal. This could potentially result in code execution, arbitrary file writes, or other attacks.	1.28.1-1 Affected by 0 other vulnerabilities.

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2025-03-28T07:46:08.562243+00:00	Arch Linux Importer	Affected by	VCID-f3jw-qwjt-aaas	https://security.archlinux.org/AVG-514	36.0.0
2024-09-18T02:01:17.355239+00:00	Arch Linux Importer	Affected by	VCID-f3jw-qwjt-aaas	https://security.archlinux.org/AVG-514	34.0.1
2024-01-03T22:27:28.601413+00:00	Arch Linux Importer	Affected by	VCID-f3jw-qwjt-aaas	https://security.archlinux.org/AVG-514	34.0.0rc1