CVE-2016-2147 (busybox, debian_linux, ubuntu_linux)

Integer overflow in the DHCP client (udhcpc) in BusyBox before 1.25.0 allows remote attackers to cause a denial of service (crash) via a malformed RFC1035-encoded domain name, which triggers an out-of-bounds heap write.

View Full Alert

Leave a Reply