Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2006-1058 (GCVE-0-2006-1058)
Vulnerability from cvelistv5
Published
2006-04-04 10:00
Modified
2024-08-07 16:56
Severity ?
EPSS score ?
Summary
BusyBox 1.1.1 does not use a salt when generating passwords, which makes it easier for local users to guess passwords from a stolen password file using techniques such as rainbow tables.
References
{ containers: { adp: [ { providerMetadata: { dateUpdated: "2024-08-07T16:56:15.493Z", orgId: "af854a3a-2127-422b-91ae-364da2661108", shortName: "CVE", }, references: [ { name: "25098", tags: [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred", ], url: "http://secunia.com/advisories/25098", }, { name: "17330", tags: [ "vdb-entry", "x_refsource_BID", "x_transferred", ], url: "http://www.securityfocus.com/bid/17330", }, { name: "oval:org.mitre.oval:def:9483", tags: [ "vdb-entry", "signature", "x_refsource_OVAL", "x_transferred", ], url: "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9483", }, { name: "19477", tags: [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred", ], url: "http://secunia.com/advisories/19477", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://bugs.busybox.net/view.php?id=604", }, { name: "25848", tags: [ "third-party-advisory", "x_refsource_SECUNIA", "x_transferred", ], url: "http://secunia.com/advisories/25848", }, { tags: [ "x_refsource_CONFIRM", "x_transferred", ], url: "http://support.avaya.com/elmodocs2/security/ASA-2007-250.htm", }, { name: "RHSA-2007:0244", tags: [ "vendor-advisory", "x_refsource_REDHAT", "x_transferred", ], url: "http://www.redhat.com/support/errata/RHSA-2007-0244.html", }, { name: "busybox-passwd-weak-security(25569)", tags: [ "vdb-entry", "x_refsource_XF", "x_transferred", ], url: "https://exchange.xforce.ibmcloud.com/vulnerabilities/25569", }, ], title: "CVE Program Container", }, ], cna: { affected: [ { product: "n/a", vendor: "n/a", versions: [ { status: "affected", version: "n/a", }, ], }, ], datePublic: "2005-12-19T00:00:00", descriptions: [ { lang: "en", value: "BusyBox 1.1.1 does not use a salt when generating passwords, which makes it easier for local users to guess passwords from a stolen password file using techniques such as rainbow tables.", }, ], problemTypes: [ { descriptions: [ { description: "n/a", lang: "en", type: "text", }, ], }, ], providerMetadata: { dateUpdated: "2017-10-10T00:57:01", orgId: "53f830b8-0a3f-465b-8143-3b8a9948e749", shortName: "redhat", }, references: [ { name: "25098", tags: [ "third-party-advisory", "x_refsource_SECUNIA", ], url: "http://secunia.com/advisories/25098", }, { name: "17330", tags: [ "vdb-entry", "x_refsource_BID", ], url: "http://www.securityfocus.com/bid/17330", }, { name: "oval:org.mitre.oval:def:9483", tags: [ "vdb-entry", "signature", "x_refsource_OVAL", ], url: "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9483", }, { name: "19477", tags: [ "third-party-advisory", "x_refsource_SECUNIA", ], url: "http://secunia.com/advisories/19477", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://bugs.busybox.net/view.php?id=604", }, { name: "25848", tags: [ "third-party-advisory", "x_refsource_SECUNIA", ], url: "http://secunia.com/advisories/25848", }, { tags: [ "x_refsource_CONFIRM", ], url: "http://support.avaya.com/elmodocs2/security/ASA-2007-250.htm", }, { name: "RHSA-2007:0244", tags: [ "vendor-advisory", "x_refsource_REDHAT", ], url: "http://www.redhat.com/support/errata/RHSA-2007-0244.html", }, { name: "busybox-passwd-weak-security(25569)", tags: [ "vdb-entry", "x_refsource_XF", ], url: "https://exchange.xforce.ibmcloud.com/vulnerabilities/25569", }, ], }, }, cveMetadata: { assignerOrgId: "53f830b8-0a3f-465b-8143-3b8a9948e749", assignerShortName: "redhat", cveId: "CVE-2006-1058", datePublished: "2006-04-04T10:00:00", dateReserved: "2006-03-07T00:00:00", dateUpdated: "2024-08-07T16:56:15.493Z", state: "PUBLISHED", }, dataType: "CVE_RECORD", dataVersion: "5.1", "vulnerability-lookup:meta": { fkie_nvd: { configurations: "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:busybox:busybox:1.1.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5408DA3E-9CA1-4768-992C-1732A45C4365\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:avaya:aura_application_enablement_services:4.01:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"BA477675-E93D-41F6-A10C-4B6CFBA97C93\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:avaya:aura_application_enablement_services:4.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0DBE1432-359B-4250-8381-E24511D24B14\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:avaya:aura_sip_enablement_services:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"5.0\", \"matchCriteriaId\": \"7CCDF311-E2C3-4AAC-83D1-44938370FBFD\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:avaya:message_networking:*:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3D8F6982-2F4D-4D78-92C1-97689D59F3A5\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:avaya:messaging_storage_server:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"3.0\", \"versionEndExcluding\": \"4.0\", \"matchCriteriaId\": \"9AEA45A8-8768-4CB4-8996-91D7F7AEC9F5\"}]}]}]", descriptions: "[{\"lang\": \"en\", \"value\": \"BusyBox 1.1.1 does not use a salt when generating passwords, which makes it easier for local users to guess passwords from a stolen password file using techniques such as rainbow tables.\"}, {\"lang\": \"es\", \"value\": \"BusyBox 1.1.1 no utiliza una \\\"sal\\\" cuando genera contrase\\u00f1as, lo que facilita a usuarios locales adivinar contrase\\u00f1as a partir de un fichero de contrase\\u00f1as robado usando t\\u00e9cnicas como tablas \\\"rainbow\\\".\\r\\n\"}]", id: "CVE-2006-1058", lastModified: "2024-11-21T00:07:58.810", metrics: "{\"cvssMetricV31\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N\", \"baseScore\": 5.5, \"baseSeverity\": \"MEDIUM\", \"attackVector\": \"LOCAL\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"LOW\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"NONE\"}, \"exploitabilityScore\": 1.8, \"impactScore\": 3.6}], \"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:L/AC:L/Au:N/C:P/I:N/A:N\", \"baseScore\": 2.1, \"accessVector\": \"LOCAL\", \"accessComplexity\": \"LOW\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"PARTIAL\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"NONE\"}, \"baseSeverity\": \"LOW\", \"exploitabilityScore\": 3.9, \"impactScore\": 2.9, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}", published: "2006-04-04T10:04:00.000", references: "[{\"url\": \"http://bugs.busybox.net/view.php?id=604\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Broken Link\"]}, {\"url\": \"http://secunia.com/advisories/19477\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Broken Link\", \"Vendor Advisory\"]}, {\"url\": \"http://secunia.com/advisories/25098\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Broken Link\"]}, {\"url\": \"http://secunia.com/advisories/25848\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Broken Link\"]}, {\"url\": \"http://support.avaya.com/elmodocs2/security/ASA-2007-250.htm\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://www.redhat.com/support/errata/RHSA-2007-0244.html\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Broken Link\"]}, {\"url\": \"http://www.securityfocus.com/bid/17330\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Broken Link\", \"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/25569\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9483\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Broken Link\"]}, {\"url\": \"http://bugs.busybox.net/view.php?id=604\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Broken Link\"]}, {\"url\": \"http://secunia.com/advisories/19477\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Broken Link\", \"Vendor Advisory\"]}, {\"url\": \"http://secunia.com/advisories/25098\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Broken Link\"]}, {\"url\": \"http://secunia.com/advisories/25848\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Broken Link\"]}, {\"url\": \"http://support.avaya.com/elmodocs2/security/ASA-2007-250.htm\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://www.redhat.com/support/errata/RHSA-2007-0244.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Broken Link\"]}, {\"url\": \"http://www.securityfocus.com/bid/17330\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Broken Link\", \"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/25569\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9483\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Broken Link\"]}]", sourceIdentifier: "secalert@redhat.com", vendorComments: "[{\"organization\": \"Red Hat\", \"comment\": \"Red Hat is aware of this issue and is tracking it via the following bug:\\nhttps://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=187385\\n\\nThe Red Hat Security Response Team has rated this issue as having low security impact, a future update may address this flaw. More information regarding issue severity can be found here:\\nhttp://www.redhat.com/security/updates/classification/\\n\\nThis issue does not affect Red Hat Enterprise Linux 2.1 or 3.\", \"lastModified\": \"2006-09-19T00:00:00\"}]", vulnStatus: "Modified", weaknesses: "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-916\"}]}]", }, nvd: "{\"cve\":{\"id\":\"CVE-2006-1058\",\"sourceIdentifier\":\"secalert@redhat.com\",\"published\":\"2006-04-04T10:04:00.000\",\"lastModified\":\"2025-04-03T01:03:51.193\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"BusyBox 1.1.1 does not use a salt when generating passwords, which makes it easier for local users to guess passwords from a stolen password file using techniques such as rainbow tables.\"},{\"lang\":\"es\",\"value\":\"BusyBox 1.1.1 no utiliza una \\\"sal\\\" cuando genera contraseñas, lo que facilita a usuarios locales adivinar contraseñas a partir de un fichero de contraseñas robado usando técnicas como tablas \\\"rainbow\\\".\\r\\n\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N\",\"baseScore\":5.5,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":1.8,\"impactScore\":3.6}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:L/AC:L/Au:N/C:P/I:N/A:N\",\"baseScore\":2.1,\"accessVector\":\"LOCAL\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"baseSeverity\":\"LOW\",\"exploitabilityScore\":3.9,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-916\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:busybox:busybox:1.1.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5408DA3E-9CA1-4768-992C-1732A45C4365\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:avaya:aura_application_enablement_services:4.01:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BA477675-E93D-41F6-A10C-4B6CFBA97C93\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:avaya:aura_application_enablement_services:4.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0DBE1432-359B-4250-8381-E24511D24B14\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:avaya:aura_sip_enablement_services:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"5.0\",\"matchCriteriaId\":\"7CCDF311-E2C3-4AAC-83D1-44938370FBFD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:avaya:message_networking:*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3D8F6982-2F4D-4D78-92C1-97689D59F3A5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:avaya:messaging_storage_server:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"3.0\",\"versionEndExcluding\":\"4.0\",\"matchCriteriaId\":\"9AEA45A8-8768-4CB4-8996-91D7F7AEC9F5\"}]}]}],\"references\":[{\"url\":\"http://bugs.busybox.net/view.php?id=604\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Broken Link\"]},{\"url\":\"http://secunia.com/advisories/19477\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Broken Link\",\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/25098\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Broken Link\"]},{\"url\":\"http://secunia.com/advisories/25848\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Broken Link\"]},{\"url\":\"http://support.avaya.com/elmodocs2/security/ASA-2007-250.htm\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2007-0244.html\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Broken Link\"]},{\"url\":\"http://www.securityfocus.com/bid/17330\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Broken Link\",\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/25569\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9483\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Broken Link\"]},{\"url\":\"http://bugs.busybox.net/view.php?id=604\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Broken Link\"]},{\"url\":\"http://secunia.com/advisories/19477\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Broken Link\",\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/25098\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Broken Link\"]},{\"url\":\"http://secunia.com/advisories/25848\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Broken Link\"]},{\"url\":\"http://support.avaya.com/elmodocs2/security/ASA-2007-250.htm\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.redhat.com/support/errata/RHSA-2007-0244.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Broken Link\"]},{\"url\":\"http://www.securityfocus.com/bid/17330\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Broken Link\",\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/25569\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9483\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Broken Link\"]}],\"vendorComments\":[{\"organization\":\"Red Hat\",\"comment\":\"Red Hat is aware of this issue and is tracking it via the following bug:\\nhttps://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=187385\\n\\nThe Red Hat Security Response Team has rated this issue as having low security impact, a future update may address this flaw. More information regarding issue severity can be found here:\\nhttp://www.redhat.com/security/updates/classification/\\n\\nThis issue does not affect Red Hat Enterprise Linux 2.1 or 3.\",\"lastModified\":\"2006-09-19T00:00:00\"}]}}", }, }
rhsa-2007:0244
Vulnerability from csaf_redhat
Published
2007-05-01 14:11
Modified
2024-11-22 00:32
Summary
Red Hat Security Advisory: busybox security update
Notes
Topic
Updated busybox packages that fix a security issue are now available.
This update has been rated as having low security impact by the Red Hat
Security Response Team.
Details
Busybox is a single binary which includes versions of a large number of
system commands, including a shell. This package can be useful for
recovering from certain types of system failures.
BusyBox did not use a salt when generating passwords. This made it
easier for local users to guess passwords from a stolen password file.
(CVE-2006-1058)
All users of busybox are advised to upgrade to these updated packages,
which contain a patch to resolve this issue.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Low", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "Updated busybox packages that fix a security issue are now available.\n\nThis update has been rated as having low security impact by the Red Hat\nSecurity Response Team.", title: "Topic", }, { category: "general", text: "Busybox is a single binary which includes versions of a large number of\nsystem commands, including a shell. This package can be useful for\nrecovering from certain types of system failures.\n\nBusyBox did not use a salt when generating passwords. This made it\neasier for local users to guess passwords from a stolen password file. \n(CVE-2006-1058)\n\nAll users of busybox are advised to upgrade to these updated packages,\nwhich contain a patch to resolve this issue.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2007:0244", url: "https://access.redhat.com/errata/RHSA-2007:0244", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#low", url: "https://access.redhat.com/security/updates/classification/#low", }, { category: "external", summary: "187385", url: "https://bugzilla.redhat.com/show_bug.cgi?id=187385", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2007/rhsa-2007_0244.json", }, ], title: "Red Hat Security Advisory: busybox security update", tracking: { current_release_date: "2024-11-22T00:32:28+00:00", generator: { date: "2024-11-22T00:32:28+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.1", }, }, id: "RHSA-2007:0244", initial_release_date: "2007-05-01T14:11:00+00:00", revision_history: [ { date: "2007-05-01T14:11:00+00:00", number: "1", summary: "Initial version", }, { date: "2007-05-01T13:34:07+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-22T00:32:28+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Enterprise Linux AS version 4", product: { name: "Red Hat Enterprise Linux AS version 4", product_id: "4AS", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:4::as", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux Desktop version 4", product: { name: "Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:4::desktop", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux ES version 4", product: { name: "Red Hat Enterprise Linux ES version 4", product_id: "4ES", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:4::es", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux WS version 4", product: { name: "Red Hat Enterprise Linux WS version 4", product_id: "4WS", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:4::ws", }, }, }, ], category: "product_family", name: "Red Hat Enterprise Linux", }, { branches: [ { category: "product_version", name: "busybox-0:1.00.rc1-7.el4.ia64", product: { name: "busybox-0:1.00.rc1-7.el4.ia64", product_id: "busybox-0:1.00.rc1-7.el4.ia64", product_identification_helper: { purl: "pkg:rpm/redhat/busybox@1.00.rc1-7.el4?arch=ia64", }, }, }, { category: "product_version", name: "busybox-debuginfo-0:1.00.rc1-7.el4.ia64", product: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.ia64", product_id: "busybox-debuginfo-0:1.00.rc1-7.el4.ia64", product_identification_helper: { purl: "pkg:rpm/redhat/busybox-debuginfo@1.00.rc1-7.el4?arch=ia64", }, }, }, { category: "product_version", name: "busybox-anaconda-0:1.00.rc1-7.el4.ia64", product: { name: "busybox-anaconda-0:1.00.rc1-7.el4.ia64", product_id: "busybox-anaconda-0:1.00.rc1-7.el4.ia64", product_identification_helper: { purl: "pkg:rpm/redhat/busybox-anaconda@1.00.rc1-7.el4?arch=ia64", }, }, }, ], category: "architecture", name: "ia64", }, { branches: [ { category: "product_version", name: "busybox-0:1.00.rc1-7.el4.src", product: { name: "busybox-0:1.00.rc1-7.el4.src", product_id: "busybox-0:1.00.rc1-7.el4.src", product_identification_helper: { purl: "pkg:rpm/redhat/busybox@1.00.rc1-7.el4?arch=src", }, }, }, ], category: "architecture", name: "src", }, { branches: [ { category: "product_version", name: "busybox-0:1.00.rc1-7.el4.x86_64", product: { name: "busybox-0:1.00.rc1-7.el4.x86_64", product_id: "busybox-0:1.00.rc1-7.el4.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/busybox@1.00.rc1-7.el4?arch=x86_64", }, }, }, { category: "product_version", name: "busybox-debuginfo-0:1.00.rc1-7.el4.x86_64", product: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.x86_64", product_id: "busybox-debuginfo-0:1.00.rc1-7.el4.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/busybox-debuginfo@1.00.rc1-7.el4?arch=x86_64", }, }, }, { category: "product_version", name: "busybox-anaconda-0:1.00.rc1-7.el4.x86_64", product: { name: "busybox-anaconda-0:1.00.rc1-7.el4.x86_64", product_id: "busybox-anaconda-0:1.00.rc1-7.el4.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/busybox-anaconda@1.00.rc1-7.el4?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "busybox-0:1.00.rc1-7.el4.i386", product: { name: "busybox-0:1.00.rc1-7.el4.i386", product_id: "busybox-0:1.00.rc1-7.el4.i386", product_identification_helper: { purl: "pkg:rpm/redhat/busybox@1.00.rc1-7.el4?arch=i386", }, }, }, { category: "product_version", name: "busybox-debuginfo-0:1.00.rc1-7.el4.i386", product: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.i386", product_id: "busybox-debuginfo-0:1.00.rc1-7.el4.i386", product_identification_helper: { purl: "pkg:rpm/redhat/busybox-debuginfo@1.00.rc1-7.el4?arch=i386", }, }, }, { category: "product_version", name: "busybox-anaconda-0:1.00.rc1-7.el4.i386", product: { name: "busybox-anaconda-0:1.00.rc1-7.el4.i386", product_id: "busybox-anaconda-0:1.00.rc1-7.el4.i386", product_identification_helper: { purl: "pkg:rpm/redhat/busybox-anaconda@1.00.rc1-7.el4?arch=i386", }, }, }, ], category: "architecture", name: "i386", }, { branches: [ { category: "product_version", name: "busybox-0:1.00.rc1-7.el4.ppc", product: { name: "busybox-0:1.00.rc1-7.el4.ppc", product_id: "busybox-0:1.00.rc1-7.el4.ppc", product_identification_helper: { purl: "pkg:rpm/redhat/busybox@1.00.rc1-7.el4?arch=ppc", }, }, }, { category: "product_version", name: "busybox-debuginfo-0:1.00.rc1-7.el4.ppc", product: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.ppc", product_id: "busybox-debuginfo-0:1.00.rc1-7.el4.ppc", product_identification_helper: { purl: "pkg:rpm/redhat/busybox-debuginfo@1.00.rc1-7.el4?arch=ppc", }, }, }, { category: "product_version", name: "busybox-anaconda-0:1.00.rc1-7.el4.ppc", product: { name: "busybox-anaconda-0:1.00.rc1-7.el4.ppc", product_id: "busybox-anaconda-0:1.00.rc1-7.el4.ppc", product_identification_helper: { purl: "pkg:rpm/redhat/busybox-anaconda@1.00.rc1-7.el4?arch=ppc", }, }, }, ], category: "architecture", name: "ppc", }, { branches: [ { category: "product_version", name: "busybox-0:1.00.rc1-7.el4.s390", product: { name: "busybox-0:1.00.rc1-7.el4.s390", product_id: "busybox-0:1.00.rc1-7.el4.s390", product_identification_helper: { purl: "pkg:rpm/redhat/busybox@1.00.rc1-7.el4?arch=s390", }, }, }, { category: "product_version", name: "busybox-debuginfo-0:1.00.rc1-7.el4.s390", product: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.s390", product_id: "busybox-debuginfo-0:1.00.rc1-7.el4.s390", product_identification_helper: { purl: "pkg:rpm/redhat/busybox-debuginfo@1.00.rc1-7.el4?arch=s390", }, }, }, { category: "product_version", name: "busybox-anaconda-0:1.00.rc1-7.el4.s390", product: { name: "busybox-anaconda-0:1.00.rc1-7.el4.s390", product_id: "busybox-anaconda-0:1.00.rc1-7.el4.s390", product_identification_helper: { purl: "pkg:rpm/redhat/busybox-anaconda@1.00.rc1-7.el4?arch=s390", }, }, }, ], category: "architecture", name: "s390", }, { branches: [ { category: "product_version", name: "busybox-0:1.00.rc1-7.el4.s390x", product: { name: "busybox-0:1.00.rc1-7.el4.s390x", product_id: "busybox-0:1.00.rc1-7.el4.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/busybox@1.00.rc1-7.el4?arch=s390x", }, }, }, { category: "product_version", name: "busybox-debuginfo-0:1.00.rc1-7.el4.s390x", product: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.s390x", product_id: "busybox-debuginfo-0:1.00.rc1-7.el4.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/busybox-debuginfo@1.00.rc1-7.el4?arch=s390x", }, }, }, { category: "product_version", name: "busybox-anaconda-0:1.00.rc1-7.el4.s390x", product: { name: "busybox-anaconda-0:1.00.rc1-7.el4.s390x", product_id: "busybox-anaconda-0:1.00.rc1-7.el4.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/busybox-anaconda@1.00.rc1-7.el4?arch=s390x", }, }, }, ], category: "architecture", name: "s390x", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.i386 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:busybox-0:1.00.rc1-7.el4.i386", }, product_reference: "busybox-0:1.00.rc1-7.el4.i386", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.ia64 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:busybox-0:1.00.rc1-7.el4.ia64", }, product_reference: "busybox-0:1.00.rc1-7.el4.ia64", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.ppc as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:busybox-0:1.00.rc1-7.el4.ppc", }, product_reference: "busybox-0:1.00.rc1-7.el4.ppc", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.s390 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:busybox-0:1.00.rc1-7.el4.s390", }, product_reference: "busybox-0:1.00.rc1-7.el4.s390", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.s390x as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:busybox-0:1.00.rc1-7.el4.s390x", }, product_reference: "busybox-0:1.00.rc1-7.el4.s390x", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.src as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:busybox-0:1.00.rc1-7.el4.src", }, product_reference: "busybox-0:1.00.rc1-7.el4.src", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.x86_64 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:busybox-0:1.00.rc1-7.el4.x86_64", }, product_reference: "busybox-0:1.00.rc1-7.el4.x86_64", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "busybox-anaconda-0:1.00.rc1-7.el4.i386 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:busybox-anaconda-0:1.00.rc1-7.el4.i386", }, product_reference: "busybox-anaconda-0:1.00.rc1-7.el4.i386", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "busybox-anaconda-0:1.00.rc1-7.el4.ia64 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:busybox-anaconda-0:1.00.rc1-7.el4.ia64", }, product_reference: "busybox-anaconda-0:1.00.rc1-7.el4.ia64", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "busybox-anaconda-0:1.00.rc1-7.el4.ppc as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:busybox-anaconda-0:1.00.rc1-7.el4.ppc", }, product_reference: "busybox-anaconda-0:1.00.rc1-7.el4.ppc", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "busybox-anaconda-0:1.00.rc1-7.el4.s390 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:busybox-anaconda-0:1.00.rc1-7.el4.s390", }, product_reference: "busybox-anaconda-0:1.00.rc1-7.el4.s390", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "busybox-anaconda-0:1.00.rc1-7.el4.s390x as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:busybox-anaconda-0:1.00.rc1-7.el4.s390x", }, product_reference: "busybox-anaconda-0:1.00.rc1-7.el4.s390x", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "busybox-anaconda-0:1.00.rc1-7.el4.x86_64 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:busybox-anaconda-0:1.00.rc1-7.el4.x86_64", }, product_reference: "busybox-anaconda-0:1.00.rc1-7.el4.x86_64", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.i386 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:busybox-debuginfo-0:1.00.rc1-7.el4.i386", }, product_reference: "busybox-debuginfo-0:1.00.rc1-7.el4.i386", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.ia64 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:busybox-debuginfo-0:1.00.rc1-7.el4.ia64", }, product_reference: "busybox-debuginfo-0:1.00.rc1-7.el4.ia64", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.ppc as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:busybox-debuginfo-0:1.00.rc1-7.el4.ppc", }, product_reference: "busybox-debuginfo-0:1.00.rc1-7.el4.ppc", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.s390 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:busybox-debuginfo-0:1.00.rc1-7.el4.s390", }, product_reference: "busybox-debuginfo-0:1.00.rc1-7.el4.s390", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.s390x as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:busybox-debuginfo-0:1.00.rc1-7.el4.s390x", }, product_reference: "busybox-debuginfo-0:1.00.rc1-7.el4.s390x", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.x86_64 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:busybox-debuginfo-0:1.00.rc1-7.el4.x86_64", }, product_reference: "busybox-debuginfo-0:1.00.rc1-7.el4.x86_64", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.i386 as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:busybox-0:1.00.rc1-7.el4.i386", }, product_reference: "busybox-0:1.00.rc1-7.el4.i386", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.ia64 as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:busybox-0:1.00.rc1-7.el4.ia64", }, product_reference: "busybox-0:1.00.rc1-7.el4.ia64", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.ppc as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:busybox-0:1.00.rc1-7.el4.ppc", }, product_reference: "busybox-0:1.00.rc1-7.el4.ppc", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.s390 as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:busybox-0:1.00.rc1-7.el4.s390", }, product_reference: "busybox-0:1.00.rc1-7.el4.s390", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.s390x as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:busybox-0:1.00.rc1-7.el4.s390x", }, product_reference: "busybox-0:1.00.rc1-7.el4.s390x", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.src as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:busybox-0:1.00.rc1-7.el4.src", }, product_reference: "busybox-0:1.00.rc1-7.el4.src", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:busybox-0:1.00.rc1-7.el4.x86_64", }, product_reference: "busybox-0:1.00.rc1-7.el4.x86_64", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "busybox-anaconda-0:1.00.rc1-7.el4.i386 as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:busybox-anaconda-0:1.00.rc1-7.el4.i386", }, product_reference: "busybox-anaconda-0:1.00.rc1-7.el4.i386", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "busybox-anaconda-0:1.00.rc1-7.el4.ia64 as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:busybox-anaconda-0:1.00.rc1-7.el4.ia64", }, product_reference: "busybox-anaconda-0:1.00.rc1-7.el4.ia64", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "busybox-anaconda-0:1.00.rc1-7.el4.ppc as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:busybox-anaconda-0:1.00.rc1-7.el4.ppc", }, product_reference: "busybox-anaconda-0:1.00.rc1-7.el4.ppc", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "busybox-anaconda-0:1.00.rc1-7.el4.s390 as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:busybox-anaconda-0:1.00.rc1-7.el4.s390", }, product_reference: "busybox-anaconda-0:1.00.rc1-7.el4.s390", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "busybox-anaconda-0:1.00.rc1-7.el4.s390x as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:busybox-anaconda-0:1.00.rc1-7.el4.s390x", }, product_reference: "busybox-anaconda-0:1.00.rc1-7.el4.s390x", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "busybox-anaconda-0:1.00.rc1-7.el4.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:busybox-anaconda-0:1.00.rc1-7.el4.x86_64", }, product_reference: "busybox-anaconda-0:1.00.rc1-7.el4.x86_64", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.i386 as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:busybox-debuginfo-0:1.00.rc1-7.el4.i386", }, product_reference: "busybox-debuginfo-0:1.00.rc1-7.el4.i386", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.ia64 as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:busybox-debuginfo-0:1.00.rc1-7.el4.ia64", }, product_reference: "busybox-debuginfo-0:1.00.rc1-7.el4.ia64", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.ppc as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:busybox-debuginfo-0:1.00.rc1-7.el4.ppc", }, product_reference: "busybox-debuginfo-0:1.00.rc1-7.el4.ppc", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.s390 as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:busybox-debuginfo-0:1.00.rc1-7.el4.s390", }, product_reference: "busybox-debuginfo-0:1.00.rc1-7.el4.s390", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.s390x as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:busybox-debuginfo-0:1.00.rc1-7.el4.s390x", }, product_reference: "busybox-debuginfo-0:1.00.rc1-7.el4.s390x", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:busybox-debuginfo-0:1.00.rc1-7.el4.x86_64", }, product_reference: "busybox-debuginfo-0:1.00.rc1-7.el4.x86_64", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.i386 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:busybox-0:1.00.rc1-7.el4.i386", }, product_reference: "busybox-0:1.00.rc1-7.el4.i386", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.ia64 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:busybox-0:1.00.rc1-7.el4.ia64", }, product_reference: "busybox-0:1.00.rc1-7.el4.ia64", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.ppc as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:busybox-0:1.00.rc1-7.el4.ppc", }, product_reference: "busybox-0:1.00.rc1-7.el4.ppc", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.s390 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:busybox-0:1.00.rc1-7.el4.s390", }, product_reference: "busybox-0:1.00.rc1-7.el4.s390", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.s390x as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:busybox-0:1.00.rc1-7.el4.s390x", }, product_reference: "busybox-0:1.00.rc1-7.el4.s390x", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.src as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:busybox-0:1.00.rc1-7.el4.src", }, product_reference: "busybox-0:1.00.rc1-7.el4.src", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.x86_64 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:busybox-0:1.00.rc1-7.el4.x86_64", }, product_reference: "busybox-0:1.00.rc1-7.el4.x86_64", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "busybox-anaconda-0:1.00.rc1-7.el4.i386 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:busybox-anaconda-0:1.00.rc1-7.el4.i386", }, product_reference: "busybox-anaconda-0:1.00.rc1-7.el4.i386", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "busybox-anaconda-0:1.00.rc1-7.el4.ia64 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:busybox-anaconda-0:1.00.rc1-7.el4.ia64", }, product_reference: "busybox-anaconda-0:1.00.rc1-7.el4.ia64", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "busybox-anaconda-0:1.00.rc1-7.el4.ppc as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:busybox-anaconda-0:1.00.rc1-7.el4.ppc", }, product_reference: "busybox-anaconda-0:1.00.rc1-7.el4.ppc", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "busybox-anaconda-0:1.00.rc1-7.el4.s390 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:busybox-anaconda-0:1.00.rc1-7.el4.s390", }, product_reference: "busybox-anaconda-0:1.00.rc1-7.el4.s390", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "busybox-anaconda-0:1.00.rc1-7.el4.s390x as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:busybox-anaconda-0:1.00.rc1-7.el4.s390x", }, product_reference: "busybox-anaconda-0:1.00.rc1-7.el4.s390x", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "busybox-anaconda-0:1.00.rc1-7.el4.x86_64 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:busybox-anaconda-0:1.00.rc1-7.el4.x86_64", }, product_reference: "busybox-anaconda-0:1.00.rc1-7.el4.x86_64", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.i386 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:busybox-debuginfo-0:1.00.rc1-7.el4.i386", }, product_reference: "busybox-debuginfo-0:1.00.rc1-7.el4.i386", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.ia64 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:busybox-debuginfo-0:1.00.rc1-7.el4.ia64", }, product_reference: "busybox-debuginfo-0:1.00.rc1-7.el4.ia64", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.ppc as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:busybox-debuginfo-0:1.00.rc1-7.el4.ppc", }, product_reference: "busybox-debuginfo-0:1.00.rc1-7.el4.ppc", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.s390 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:busybox-debuginfo-0:1.00.rc1-7.el4.s390", }, product_reference: "busybox-debuginfo-0:1.00.rc1-7.el4.s390", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.s390x as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:busybox-debuginfo-0:1.00.rc1-7.el4.s390x", }, product_reference: "busybox-debuginfo-0:1.00.rc1-7.el4.s390x", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.x86_64 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:busybox-debuginfo-0:1.00.rc1-7.el4.x86_64", }, product_reference: "busybox-debuginfo-0:1.00.rc1-7.el4.x86_64", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.i386 as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:busybox-0:1.00.rc1-7.el4.i386", }, product_reference: "busybox-0:1.00.rc1-7.el4.i386", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.ia64 as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:busybox-0:1.00.rc1-7.el4.ia64", }, product_reference: "busybox-0:1.00.rc1-7.el4.ia64", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.ppc as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:busybox-0:1.00.rc1-7.el4.ppc", }, product_reference: "busybox-0:1.00.rc1-7.el4.ppc", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.s390 as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:busybox-0:1.00.rc1-7.el4.s390", }, product_reference: "busybox-0:1.00.rc1-7.el4.s390", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.s390x as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:busybox-0:1.00.rc1-7.el4.s390x", }, product_reference: "busybox-0:1.00.rc1-7.el4.s390x", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.src as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:busybox-0:1.00.rc1-7.el4.src", }, product_reference: "busybox-0:1.00.rc1-7.el4.src", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.x86_64 as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:busybox-0:1.00.rc1-7.el4.x86_64", }, product_reference: "busybox-0:1.00.rc1-7.el4.x86_64", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "busybox-anaconda-0:1.00.rc1-7.el4.i386 as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:busybox-anaconda-0:1.00.rc1-7.el4.i386", }, product_reference: "busybox-anaconda-0:1.00.rc1-7.el4.i386", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "busybox-anaconda-0:1.00.rc1-7.el4.ia64 as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:busybox-anaconda-0:1.00.rc1-7.el4.ia64", }, product_reference: "busybox-anaconda-0:1.00.rc1-7.el4.ia64", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "busybox-anaconda-0:1.00.rc1-7.el4.ppc as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:busybox-anaconda-0:1.00.rc1-7.el4.ppc", }, product_reference: "busybox-anaconda-0:1.00.rc1-7.el4.ppc", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "busybox-anaconda-0:1.00.rc1-7.el4.s390 as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:busybox-anaconda-0:1.00.rc1-7.el4.s390", }, product_reference: "busybox-anaconda-0:1.00.rc1-7.el4.s390", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "busybox-anaconda-0:1.00.rc1-7.el4.s390x as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:busybox-anaconda-0:1.00.rc1-7.el4.s390x", }, product_reference: "busybox-anaconda-0:1.00.rc1-7.el4.s390x", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "busybox-anaconda-0:1.00.rc1-7.el4.x86_64 as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:busybox-anaconda-0:1.00.rc1-7.el4.x86_64", }, product_reference: "busybox-anaconda-0:1.00.rc1-7.el4.x86_64", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.i386 as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:busybox-debuginfo-0:1.00.rc1-7.el4.i386", }, product_reference: "busybox-debuginfo-0:1.00.rc1-7.el4.i386", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.ia64 as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:busybox-debuginfo-0:1.00.rc1-7.el4.ia64", }, product_reference: "busybox-debuginfo-0:1.00.rc1-7.el4.ia64", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.ppc as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:busybox-debuginfo-0:1.00.rc1-7.el4.ppc", }, product_reference: "busybox-debuginfo-0:1.00.rc1-7.el4.ppc", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.s390 as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:busybox-debuginfo-0:1.00.rc1-7.el4.s390", }, product_reference: "busybox-debuginfo-0:1.00.rc1-7.el4.s390", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.s390x as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:busybox-debuginfo-0:1.00.rc1-7.el4.s390x", }, product_reference: "busybox-debuginfo-0:1.00.rc1-7.el4.s390x", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.x86_64 as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:busybox-debuginfo-0:1.00.rc1-7.el4.x86_64", }, product_reference: "busybox-debuginfo-0:1.00.rc1-7.el4.x86_64", relates_to_product_reference: "4WS", }, ], }, vulnerabilities: [ { cve: "CVE-2006-1058", discovery_date: "2006-03-29T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1618027", }, ], notes: [ { category: "description", text: "BusyBox 1.1.1 does not use a salt when generating passwords, which makes it easier for local users to guess passwords from a stolen password file using techniques such as rainbow tables.", title: "Vulnerability description", }, { category: "summary", text: "security flaw", title: "Vulnerability summary", }, { category: "other", text: "Red Hat is aware of this issue and is tracking it via the following bug:\nhttps://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=187385\n\nThe Red Hat Security Response Team has rated this issue as having low security impact, a future update may address this flaw. More information regarding issue severity can be found here:\nhttp://www.redhat.com/security/updates/classification/\n\nThis issue does not affect Red Hat Enterprise Linux 2.1 or 3.", title: "Statement", }, ], product_status: { fixed: [ "4AS:busybox-0:1.00.rc1-7.el4.i386", "4AS:busybox-0:1.00.rc1-7.el4.ia64", "4AS:busybox-0:1.00.rc1-7.el4.ppc", "4AS:busybox-0:1.00.rc1-7.el4.s390", "4AS:busybox-0:1.00.rc1-7.el4.s390x", "4AS:busybox-0:1.00.rc1-7.el4.src", "4AS:busybox-0:1.00.rc1-7.el4.x86_64", "4AS:busybox-anaconda-0:1.00.rc1-7.el4.i386", "4AS:busybox-anaconda-0:1.00.rc1-7.el4.ia64", "4AS:busybox-anaconda-0:1.00.rc1-7.el4.ppc", "4AS:busybox-anaconda-0:1.00.rc1-7.el4.s390", "4AS:busybox-anaconda-0:1.00.rc1-7.el4.s390x", "4AS:busybox-anaconda-0:1.00.rc1-7.el4.x86_64", "4AS:busybox-debuginfo-0:1.00.rc1-7.el4.i386", "4AS:busybox-debuginfo-0:1.00.rc1-7.el4.ia64", "4AS:busybox-debuginfo-0:1.00.rc1-7.el4.ppc", "4AS:busybox-debuginfo-0:1.00.rc1-7.el4.s390", "4AS:busybox-debuginfo-0:1.00.rc1-7.el4.s390x", "4AS:busybox-debuginfo-0:1.00.rc1-7.el4.x86_64", "4Desktop:busybox-0:1.00.rc1-7.el4.i386", "4Desktop:busybox-0:1.00.rc1-7.el4.ia64", "4Desktop:busybox-0:1.00.rc1-7.el4.ppc", "4Desktop:busybox-0:1.00.rc1-7.el4.s390", "4Desktop:busybox-0:1.00.rc1-7.el4.s390x", "4Desktop:busybox-0:1.00.rc1-7.el4.src", "4Desktop:busybox-0:1.00.rc1-7.el4.x86_64", "4Desktop:busybox-anaconda-0:1.00.rc1-7.el4.i386", "4Desktop:busybox-anaconda-0:1.00.rc1-7.el4.ia64", "4Desktop:busybox-anaconda-0:1.00.rc1-7.el4.ppc", "4Desktop:busybox-anaconda-0:1.00.rc1-7.el4.s390", "4Desktop:busybox-anaconda-0:1.00.rc1-7.el4.s390x", "4Desktop:busybox-anaconda-0:1.00.rc1-7.el4.x86_64", "4Desktop:busybox-debuginfo-0:1.00.rc1-7.el4.i386", "4Desktop:busybox-debuginfo-0:1.00.rc1-7.el4.ia64", "4Desktop:busybox-debuginfo-0:1.00.rc1-7.el4.ppc", "4Desktop:busybox-debuginfo-0:1.00.rc1-7.el4.s390", "4Desktop:busybox-debuginfo-0:1.00.rc1-7.el4.s390x", "4Desktop:busybox-debuginfo-0:1.00.rc1-7.el4.x86_64", "4ES:busybox-0:1.00.rc1-7.el4.i386", "4ES:busybox-0:1.00.rc1-7.el4.ia64", "4ES:busybox-0:1.00.rc1-7.el4.ppc", "4ES:busybox-0:1.00.rc1-7.el4.s390", "4ES:busybox-0:1.00.rc1-7.el4.s390x", "4ES:busybox-0:1.00.rc1-7.el4.src", "4ES:busybox-0:1.00.rc1-7.el4.x86_64", "4ES:busybox-anaconda-0:1.00.rc1-7.el4.i386", "4ES:busybox-anaconda-0:1.00.rc1-7.el4.ia64", "4ES:busybox-anaconda-0:1.00.rc1-7.el4.ppc", "4ES:busybox-anaconda-0:1.00.rc1-7.el4.s390", "4ES:busybox-anaconda-0:1.00.rc1-7.el4.s390x", "4ES:busybox-anaconda-0:1.00.rc1-7.el4.x86_64", "4ES:busybox-debuginfo-0:1.00.rc1-7.el4.i386", "4ES:busybox-debuginfo-0:1.00.rc1-7.el4.ia64", "4ES:busybox-debuginfo-0:1.00.rc1-7.el4.ppc", "4ES:busybox-debuginfo-0:1.00.rc1-7.el4.s390", "4ES:busybox-debuginfo-0:1.00.rc1-7.el4.s390x", "4ES:busybox-debuginfo-0:1.00.rc1-7.el4.x86_64", "4WS:busybox-0:1.00.rc1-7.el4.i386", "4WS:busybox-0:1.00.rc1-7.el4.ia64", "4WS:busybox-0:1.00.rc1-7.el4.ppc", "4WS:busybox-0:1.00.rc1-7.el4.s390", "4WS:busybox-0:1.00.rc1-7.el4.s390x", "4WS:busybox-0:1.00.rc1-7.el4.src", "4WS:busybox-0:1.00.rc1-7.el4.x86_64", "4WS:busybox-anaconda-0:1.00.rc1-7.el4.i386", "4WS:busybox-anaconda-0:1.00.rc1-7.el4.ia64", "4WS:busybox-anaconda-0:1.00.rc1-7.el4.ppc", "4WS:busybox-anaconda-0:1.00.rc1-7.el4.s390", "4WS:busybox-anaconda-0:1.00.rc1-7.el4.s390x", "4WS:busybox-anaconda-0:1.00.rc1-7.el4.x86_64", "4WS:busybox-debuginfo-0:1.00.rc1-7.el4.i386", "4WS:busybox-debuginfo-0:1.00.rc1-7.el4.ia64", "4WS:busybox-debuginfo-0:1.00.rc1-7.el4.ppc", "4WS:busybox-debuginfo-0:1.00.rc1-7.el4.s390", "4WS:busybox-debuginfo-0:1.00.rc1-7.el4.s390x", "4WS:busybox-debuginfo-0:1.00.rc1-7.el4.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2006-1058", }, { category: "external", summary: "RHBZ#1618027", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1618027", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2006-1058", url: "https://www.cve.org/CVERecord?id=CVE-2006-1058", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2006-1058", url: "https://nvd.nist.gov/vuln/detail/CVE-2006-1058", }, ], release_date: "2005-12-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2007-05-01T14:11:00+00:00", details: "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied. Use Red Hat\nNetwork to download and update your packages. To launch the Red Hat\nUpdate Agent, use the following command:\n\n up2date\n\nFor information on how to install packages manually, refer to the\nfollowing Web page for the System Administration or Customization\nguide specific to your system:\n\n http://www.redhat.com/docs/manuals/enterprise/", product_ids: [ "4AS:busybox-0:1.00.rc1-7.el4.i386", "4AS:busybox-0:1.00.rc1-7.el4.ia64", "4AS:busybox-0:1.00.rc1-7.el4.ppc", "4AS:busybox-0:1.00.rc1-7.el4.s390", "4AS:busybox-0:1.00.rc1-7.el4.s390x", "4AS:busybox-0:1.00.rc1-7.el4.src", "4AS:busybox-0:1.00.rc1-7.el4.x86_64", "4AS:busybox-anaconda-0:1.00.rc1-7.el4.i386", "4AS:busybox-anaconda-0:1.00.rc1-7.el4.ia64", "4AS:busybox-anaconda-0:1.00.rc1-7.el4.ppc", "4AS:busybox-anaconda-0:1.00.rc1-7.el4.s390", "4AS:busybox-anaconda-0:1.00.rc1-7.el4.s390x", "4AS:busybox-anaconda-0:1.00.rc1-7.el4.x86_64", "4AS:busybox-debuginfo-0:1.00.rc1-7.el4.i386", "4AS:busybox-debuginfo-0:1.00.rc1-7.el4.ia64", "4AS:busybox-debuginfo-0:1.00.rc1-7.el4.ppc", "4AS:busybox-debuginfo-0:1.00.rc1-7.el4.s390", "4AS:busybox-debuginfo-0:1.00.rc1-7.el4.s390x", "4AS:busybox-debuginfo-0:1.00.rc1-7.el4.x86_64", "4Desktop:busybox-0:1.00.rc1-7.el4.i386", "4Desktop:busybox-0:1.00.rc1-7.el4.ia64", "4Desktop:busybox-0:1.00.rc1-7.el4.ppc", "4Desktop:busybox-0:1.00.rc1-7.el4.s390", "4Desktop:busybox-0:1.00.rc1-7.el4.s390x", "4Desktop:busybox-0:1.00.rc1-7.el4.src", "4Desktop:busybox-0:1.00.rc1-7.el4.x86_64", "4Desktop:busybox-anaconda-0:1.00.rc1-7.el4.i386", "4Desktop:busybox-anaconda-0:1.00.rc1-7.el4.ia64", "4Desktop:busybox-anaconda-0:1.00.rc1-7.el4.ppc", "4Desktop:busybox-anaconda-0:1.00.rc1-7.el4.s390", "4Desktop:busybox-anaconda-0:1.00.rc1-7.el4.s390x", "4Desktop:busybox-anaconda-0:1.00.rc1-7.el4.x86_64", "4Desktop:busybox-debuginfo-0:1.00.rc1-7.el4.i386", "4Desktop:busybox-debuginfo-0:1.00.rc1-7.el4.ia64", "4Desktop:busybox-debuginfo-0:1.00.rc1-7.el4.ppc", "4Desktop:busybox-debuginfo-0:1.00.rc1-7.el4.s390", "4Desktop:busybox-debuginfo-0:1.00.rc1-7.el4.s390x", "4Desktop:busybox-debuginfo-0:1.00.rc1-7.el4.x86_64", "4ES:busybox-0:1.00.rc1-7.el4.i386", "4ES:busybox-0:1.00.rc1-7.el4.ia64", "4ES:busybox-0:1.00.rc1-7.el4.ppc", "4ES:busybox-0:1.00.rc1-7.el4.s390", "4ES:busybox-0:1.00.rc1-7.el4.s390x", "4ES:busybox-0:1.00.rc1-7.el4.src", "4ES:busybox-0:1.00.rc1-7.el4.x86_64", "4ES:busybox-anaconda-0:1.00.rc1-7.el4.i386", "4ES:busybox-anaconda-0:1.00.rc1-7.el4.ia64", "4ES:busybox-anaconda-0:1.00.rc1-7.el4.ppc", "4ES:busybox-anaconda-0:1.00.rc1-7.el4.s390", "4ES:busybox-anaconda-0:1.00.rc1-7.el4.s390x", "4ES:busybox-anaconda-0:1.00.rc1-7.el4.x86_64", "4ES:busybox-debuginfo-0:1.00.rc1-7.el4.i386", "4ES:busybox-debuginfo-0:1.00.rc1-7.el4.ia64", "4ES:busybox-debuginfo-0:1.00.rc1-7.el4.ppc", "4ES:busybox-debuginfo-0:1.00.rc1-7.el4.s390", "4ES:busybox-debuginfo-0:1.00.rc1-7.el4.s390x", "4ES:busybox-debuginfo-0:1.00.rc1-7.el4.x86_64", "4WS:busybox-0:1.00.rc1-7.el4.i386", "4WS:busybox-0:1.00.rc1-7.el4.ia64", "4WS:busybox-0:1.00.rc1-7.el4.ppc", "4WS:busybox-0:1.00.rc1-7.el4.s390", "4WS:busybox-0:1.00.rc1-7.el4.s390x", "4WS:busybox-0:1.00.rc1-7.el4.src", "4WS:busybox-0:1.00.rc1-7.el4.x86_64", "4WS:busybox-anaconda-0:1.00.rc1-7.el4.i386", "4WS:busybox-anaconda-0:1.00.rc1-7.el4.ia64", "4WS:busybox-anaconda-0:1.00.rc1-7.el4.ppc", "4WS:busybox-anaconda-0:1.00.rc1-7.el4.s390", "4WS:busybox-anaconda-0:1.00.rc1-7.el4.s390x", "4WS:busybox-anaconda-0:1.00.rc1-7.el4.x86_64", "4WS:busybox-debuginfo-0:1.00.rc1-7.el4.i386", "4WS:busybox-debuginfo-0:1.00.rc1-7.el4.ia64", "4WS:busybox-debuginfo-0:1.00.rc1-7.el4.ppc", "4WS:busybox-debuginfo-0:1.00.rc1-7.el4.s390", "4WS:busybox-debuginfo-0:1.00.rc1-7.el4.s390x", "4WS:busybox-debuginfo-0:1.00.rc1-7.el4.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2007:0244", }, ], threats: [ { category: "impact", details: "Low", }, ], title: "security flaw", }, ], }
RHSA-2007:0244
Vulnerability from csaf_redhat
Published
2007-05-01 14:11
Modified
2024-11-22 00:32
Summary
Red Hat Security Advisory: busybox security update
Notes
Topic
Updated busybox packages that fix a security issue are now available.
This update has been rated as having low security impact by the Red Hat
Security Response Team.
Details
Busybox is a single binary which includes versions of a large number of
system commands, including a shell. This package can be useful for
recovering from certain types of system failures.
BusyBox did not use a salt when generating passwords. This made it
easier for local users to guess passwords from a stolen password file.
(CVE-2006-1058)
All users of busybox are advised to upgrade to these updated packages,
which contain a patch to resolve this issue.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Low", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "Updated busybox packages that fix a security issue are now available.\n\nThis update has been rated as having low security impact by the Red Hat\nSecurity Response Team.", title: "Topic", }, { category: "general", text: "Busybox is a single binary which includes versions of a large number of\nsystem commands, including a shell. This package can be useful for\nrecovering from certain types of system failures.\n\nBusyBox did not use a salt when generating passwords. This made it\neasier for local users to guess passwords from a stolen password file. \n(CVE-2006-1058)\n\nAll users of busybox are advised to upgrade to these updated packages,\nwhich contain a patch to resolve this issue.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2007:0244", url: "https://access.redhat.com/errata/RHSA-2007:0244", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#low", url: "https://access.redhat.com/security/updates/classification/#low", }, { category: "external", summary: "187385", url: "https://bugzilla.redhat.com/show_bug.cgi?id=187385", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2007/rhsa-2007_0244.json", }, ], title: "Red Hat Security Advisory: busybox security update", tracking: { current_release_date: "2024-11-22T00:32:28+00:00", generator: { date: "2024-11-22T00:32:28+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.1", }, }, id: "RHSA-2007:0244", initial_release_date: "2007-05-01T14:11:00+00:00", revision_history: [ { date: "2007-05-01T14:11:00+00:00", number: "1", summary: "Initial version", }, { date: "2007-05-01T13:34:07+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-22T00:32:28+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Enterprise Linux AS version 4", product: { name: "Red Hat Enterprise Linux AS version 4", product_id: "4AS", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:4::as", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux Desktop version 4", product: { name: "Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:4::desktop", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux ES version 4", product: { name: "Red Hat Enterprise Linux ES version 4", product_id: "4ES", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:4::es", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux WS version 4", product: { name: "Red Hat Enterprise Linux WS version 4", product_id: "4WS", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:4::ws", }, }, }, ], category: "product_family", name: "Red Hat Enterprise Linux", }, { branches: [ { category: "product_version", name: "busybox-0:1.00.rc1-7.el4.ia64", product: { name: "busybox-0:1.00.rc1-7.el4.ia64", product_id: "busybox-0:1.00.rc1-7.el4.ia64", product_identification_helper: { purl: "pkg:rpm/redhat/busybox@1.00.rc1-7.el4?arch=ia64", }, }, }, { category: "product_version", name: "busybox-debuginfo-0:1.00.rc1-7.el4.ia64", product: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.ia64", product_id: "busybox-debuginfo-0:1.00.rc1-7.el4.ia64", product_identification_helper: { purl: "pkg:rpm/redhat/busybox-debuginfo@1.00.rc1-7.el4?arch=ia64", }, }, }, { category: "product_version", name: "busybox-anaconda-0:1.00.rc1-7.el4.ia64", product: { name: "busybox-anaconda-0:1.00.rc1-7.el4.ia64", product_id: "busybox-anaconda-0:1.00.rc1-7.el4.ia64", product_identification_helper: { purl: "pkg:rpm/redhat/busybox-anaconda@1.00.rc1-7.el4?arch=ia64", }, }, }, ], category: "architecture", name: "ia64", }, { branches: [ { category: "product_version", name: "busybox-0:1.00.rc1-7.el4.src", product: { name: "busybox-0:1.00.rc1-7.el4.src", product_id: "busybox-0:1.00.rc1-7.el4.src", product_identification_helper: { purl: "pkg:rpm/redhat/busybox@1.00.rc1-7.el4?arch=src", }, }, }, ], category: "architecture", name: "src", }, { branches: [ { category: "product_version", name: "busybox-0:1.00.rc1-7.el4.x86_64", product: { name: "busybox-0:1.00.rc1-7.el4.x86_64", product_id: "busybox-0:1.00.rc1-7.el4.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/busybox@1.00.rc1-7.el4?arch=x86_64", }, }, }, { category: "product_version", name: "busybox-debuginfo-0:1.00.rc1-7.el4.x86_64", product: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.x86_64", product_id: "busybox-debuginfo-0:1.00.rc1-7.el4.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/busybox-debuginfo@1.00.rc1-7.el4?arch=x86_64", }, }, }, { category: "product_version", name: "busybox-anaconda-0:1.00.rc1-7.el4.x86_64", product: { name: "busybox-anaconda-0:1.00.rc1-7.el4.x86_64", product_id: "busybox-anaconda-0:1.00.rc1-7.el4.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/busybox-anaconda@1.00.rc1-7.el4?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "busybox-0:1.00.rc1-7.el4.i386", product: { name: "busybox-0:1.00.rc1-7.el4.i386", product_id: "busybox-0:1.00.rc1-7.el4.i386", product_identification_helper: { purl: "pkg:rpm/redhat/busybox@1.00.rc1-7.el4?arch=i386", }, }, }, { category: "product_version", name: "busybox-debuginfo-0:1.00.rc1-7.el4.i386", product: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.i386", product_id: "busybox-debuginfo-0:1.00.rc1-7.el4.i386", product_identification_helper: { purl: "pkg:rpm/redhat/busybox-debuginfo@1.00.rc1-7.el4?arch=i386", }, }, }, { category: "product_version", name: "busybox-anaconda-0:1.00.rc1-7.el4.i386", product: { name: "busybox-anaconda-0:1.00.rc1-7.el4.i386", product_id: "busybox-anaconda-0:1.00.rc1-7.el4.i386", product_identification_helper: { purl: "pkg:rpm/redhat/busybox-anaconda@1.00.rc1-7.el4?arch=i386", }, }, }, ], category: "architecture", name: "i386", }, { branches: [ { category: "product_version", name: "busybox-0:1.00.rc1-7.el4.ppc", product: { name: "busybox-0:1.00.rc1-7.el4.ppc", product_id: "busybox-0:1.00.rc1-7.el4.ppc", product_identification_helper: { purl: "pkg:rpm/redhat/busybox@1.00.rc1-7.el4?arch=ppc", }, }, }, { category: "product_version", name: "busybox-debuginfo-0:1.00.rc1-7.el4.ppc", product: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.ppc", product_id: "busybox-debuginfo-0:1.00.rc1-7.el4.ppc", product_identification_helper: { purl: "pkg:rpm/redhat/busybox-debuginfo@1.00.rc1-7.el4?arch=ppc", }, }, }, { category: "product_version", name: "busybox-anaconda-0:1.00.rc1-7.el4.ppc", product: { name: "busybox-anaconda-0:1.00.rc1-7.el4.ppc", product_id: "busybox-anaconda-0:1.00.rc1-7.el4.ppc", product_identification_helper: { purl: "pkg:rpm/redhat/busybox-anaconda@1.00.rc1-7.el4?arch=ppc", }, }, }, ], category: "architecture", name: "ppc", }, { branches: [ { category: "product_version", name: "busybox-0:1.00.rc1-7.el4.s390", product: { name: "busybox-0:1.00.rc1-7.el4.s390", product_id: "busybox-0:1.00.rc1-7.el4.s390", product_identification_helper: { purl: "pkg:rpm/redhat/busybox@1.00.rc1-7.el4?arch=s390", }, }, }, { category: "product_version", name: "busybox-debuginfo-0:1.00.rc1-7.el4.s390", product: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.s390", product_id: "busybox-debuginfo-0:1.00.rc1-7.el4.s390", product_identification_helper: { purl: "pkg:rpm/redhat/busybox-debuginfo@1.00.rc1-7.el4?arch=s390", }, }, }, { category: "product_version", name: "busybox-anaconda-0:1.00.rc1-7.el4.s390", product: { name: "busybox-anaconda-0:1.00.rc1-7.el4.s390", product_id: "busybox-anaconda-0:1.00.rc1-7.el4.s390", product_identification_helper: { purl: "pkg:rpm/redhat/busybox-anaconda@1.00.rc1-7.el4?arch=s390", }, }, }, ], category: "architecture", name: "s390", }, { branches: [ { category: "product_version", name: "busybox-0:1.00.rc1-7.el4.s390x", product: { name: "busybox-0:1.00.rc1-7.el4.s390x", product_id: "busybox-0:1.00.rc1-7.el4.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/busybox@1.00.rc1-7.el4?arch=s390x", }, }, }, { category: "product_version", name: "busybox-debuginfo-0:1.00.rc1-7.el4.s390x", product: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.s390x", product_id: "busybox-debuginfo-0:1.00.rc1-7.el4.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/busybox-debuginfo@1.00.rc1-7.el4?arch=s390x", }, }, }, { category: "product_version", name: "busybox-anaconda-0:1.00.rc1-7.el4.s390x", product: { name: "busybox-anaconda-0:1.00.rc1-7.el4.s390x", product_id: "busybox-anaconda-0:1.00.rc1-7.el4.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/busybox-anaconda@1.00.rc1-7.el4?arch=s390x", }, }, }, ], category: "architecture", name: "s390x", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.i386 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:busybox-0:1.00.rc1-7.el4.i386", }, product_reference: "busybox-0:1.00.rc1-7.el4.i386", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.ia64 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:busybox-0:1.00.rc1-7.el4.ia64", }, product_reference: "busybox-0:1.00.rc1-7.el4.ia64", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.ppc as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:busybox-0:1.00.rc1-7.el4.ppc", }, product_reference: "busybox-0:1.00.rc1-7.el4.ppc", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.s390 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:busybox-0:1.00.rc1-7.el4.s390", }, product_reference: "busybox-0:1.00.rc1-7.el4.s390", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.s390x as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:busybox-0:1.00.rc1-7.el4.s390x", }, product_reference: "busybox-0:1.00.rc1-7.el4.s390x", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.src as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:busybox-0:1.00.rc1-7.el4.src", }, product_reference: "busybox-0:1.00.rc1-7.el4.src", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.x86_64 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:busybox-0:1.00.rc1-7.el4.x86_64", }, product_reference: "busybox-0:1.00.rc1-7.el4.x86_64", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "busybox-anaconda-0:1.00.rc1-7.el4.i386 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:busybox-anaconda-0:1.00.rc1-7.el4.i386", }, product_reference: "busybox-anaconda-0:1.00.rc1-7.el4.i386", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "busybox-anaconda-0:1.00.rc1-7.el4.ia64 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:busybox-anaconda-0:1.00.rc1-7.el4.ia64", }, product_reference: "busybox-anaconda-0:1.00.rc1-7.el4.ia64", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "busybox-anaconda-0:1.00.rc1-7.el4.ppc as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:busybox-anaconda-0:1.00.rc1-7.el4.ppc", }, product_reference: "busybox-anaconda-0:1.00.rc1-7.el4.ppc", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "busybox-anaconda-0:1.00.rc1-7.el4.s390 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:busybox-anaconda-0:1.00.rc1-7.el4.s390", }, product_reference: "busybox-anaconda-0:1.00.rc1-7.el4.s390", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "busybox-anaconda-0:1.00.rc1-7.el4.s390x as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:busybox-anaconda-0:1.00.rc1-7.el4.s390x", }, product_reference: "busybox-anaconda-0:1.00.rc1-7.el4.s390x", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "busybox-anaconda-0:1.00.rc1-7.el4.x86_64 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:busybox-anaconda-0:1.00.rc1-7.el4.x86_64", }, product_reference: "busybox-anaconda-0:1.00.rc1-7.el4.x86_64", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.i386 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:busybox-debuginfo-0:1.00.rc1-7.el4.i386", }, product_reference: "busybox-debuginfo-0:1.00.rc1-7.el4.i386", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.ia64 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:busybox-debuginfo-0:1.00.rc1-7.el4.ia64", }, product_reference: "busybox-debuginfo-0:1.00.rc1-7.el4.ia64", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.ppc as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:busybox-debuginfo-0:1.00.rc1-7.el4.ppc", }, product_reference: "busybox-debuginfo-0:1.00.rc1-7.el4.ppc", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.s390 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:busybox-debuginfo-0:1.00.rc1-7.el4.s390", }, product_reference: "busybox-debuginfo-0:1.00.rc1-7.el4.s390", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.s390x as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:busybox-debuginfo-0:1.00.rc1-7.el4.s390x", }, product_reference: "busybox-debuginfo-0:1.00.rc1-7.el4.s390x", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.x86_64 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:busybox-debuginfo-0:1.00.rc1-7.el4.x86_64", }, product_reference: "busybox-debuginfo-0:1.00.rc1-7.el4.x86_64", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.i386 as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:busybox-0:1.00.rc1-7.el4.i386", }, product_reference: "busybox-0:1.00.rc1-7.el4.i386", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.ia64 as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:busybox-0:1.00.rc1-7.el4.ia64", }, product_reference: "busybox-0:1.00.rc1-7.el4.ia64", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.ppc as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:busybox-0:1.00.rc1-7.el4.ppc", }, product_reference: "busybox-0:1.00.rc1-7.el4.ppc", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.s390 as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:busybox-0:1.00.rc1-7.el4.s390", }, product_reference: "busybox-0:1.00.rc1-7.el4.s390", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.s390x as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:busybox-0:1.00.rc1-7.el4.s390x", }, product_reference: "busybox-0:1.00.rc1-7.el4.s390x", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.src as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:busybox-0:1.00.rc1-7.el4.src", }, product_reference: "busybox-0:1.00.rc1-7.el4.src", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:busybox-0:1.00.rc1-7.el4.x86_64", }, product_reference: "busybox-0:1.00.rc1-7.el4.x86_64", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "busybox-anaconda-0:1.00.rc1-7.el4.i386 as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:busybox-anaconda-0:1.00.rc1-7.el4.i386", }, product_reference: "busybox-anaconda-0:1.00.rc1-7.el4.i386", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "busybox-anaconda-0:1.00.rc1-7.el4.ia64 as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:busybox-anaconda-0:1.00.rc1-7.el4.ia64", }, product_reference: "busybox-anaconda-0:1.00.rc1-7.el4.ia64", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "busybox-anaconda-0:1.00.rc1-7.el4.ppc as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:busybox-anaconda-0:1.00.rc1-7.el4.ppc", }, product_reference: "busybox-anaconda-0:1.00.rc1-7.el4.ppc", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "busybox-anaconda-0:1.00.rc1-7.el4.s390 as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:busybox-anaconda-0:1.00.rc1-7.el4.s390", }, product_reference: "busybox-anaconda-0:1.00.rc1-7.el4.s390", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "busybox-anaconda-0:1.00.rc1-7.el4.s390x as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:busybox-anaconda-0:1.00.rc1-7.el4.s390x", }, product_reference: "busybox-anaconda-0:1.00.rc1-7.el4.s390x", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "busybox-anaconda-0:1.00.rc1-7.el4.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:busybox-anaconda-0:1.00.rc1-7.el4.x86_64", }, product_reference: "busybox-anaconda-0:1.00.rc1-7.el4.x86_64", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.i386 as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:busybox-debuginfo-0:1.00.rc1-7.el4.i386", }, product_reference: "busybox-debuginfo-0:1.00.rc1-7.el4.i386", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.ia64 as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:busybox-debuginfo-0:1.00.rc1-7.el4.ia64", }, product_reference: "busybox-debuginfo-0:1.00.rc1-7.el4.ia64", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.ppc as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:busybox-debuginfo-0:1.00.rc1-7.el4.ppc", }, product_reference: "busybox-debuginfo-0:1.00.rc1-7.el4.ppc", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.s390 as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:busybox-debuginfo-0:1.00.rc1-7.el4.s390", }, product_reference: "busybox-debuginfo-0:1.00.rc1-7.el4.s390", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.s390x as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:busybox-debuginfo-0:1.00.rc1-7.el4.s390x", }, product_reference: "busybox-debuginfo-0:1.00.rc1-7.el4.s390x", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:busybox-debuginfo-0:1.00.rc1-7.el4.x86_64", }, product_reference: "busybox-debuginfo-0:1.00.rc1-7.el4.x86_64", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.i386 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:busybox-0:1.00.rc1-7.el4.i386", }, product_reference: "busybox-0:1.00.rc1-7.el4.i386", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.ia64 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:busybox-0:1.00.rc1-7.el4.ia64", }, product_reference: "busybox-0:1.00.rc1-7.el4.ia64", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.ppc as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:busybox-0:1.00.rc1-7.el4.ppc", }, product_reference: "busybox-0:1.00.rc1-7.el4.ppc", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.s390 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:busybox-0:1.00.rc1-7.el4.s390", }, product_reference: "busybox-0:1.00.rc1-7.el4.s390", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.s390x as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:busybox-0:1.00.rc1-7.el4.s390x", }, product_reference: "busybox-0:1.00.rc1-7.el4.s390x", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.src as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:busybox-0:1.00.rc1-7.el4.src", }, product_reference: "busybox-0:1.00.rc1-7.el4.src", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.x86_64 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:busybox-0:1.00.rc1-7.el4.x86_64", }, product_reference: "busybox-0:1.00.rc1-7.el4.x86_64", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "busybox-anaconda-0:1.00.rc1-7.el4.i386 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:busybox-anaconda-0:1.00.rc1-7.el4.i386", }, product_reference: "busybox-anaconda-0:1.00.rc1-7.el4.i386", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "busybox-anaconda-0:1.00.rc1-7.el4.ia64 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:busybox-anaconda-0:1.00.rc1-7.el4.ia64", }, product_reference: "busybox-anaconda-0:1.00.rc1-7.el4.ia64", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "busybox-anaconda-0:1.00.rc1-7.el4.ppc as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:busybox-anaconda-0:1.00.rc1-7.el4.ppc", }, product_reference: "busybox-anaconda-0:1.00.rc1-7.el4.ppc", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "busybox-anaconda-0:1.00.rc1-7.el4.s390 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:busybox-anaconda-0:1.00.rc1-7.el4.s390", }, product_reference: "busybox-anaconda-0:1.00.rc1-7.el4.s390", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "busybox-anaconda-0:1.00.rc1-7.el4.s390x as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:busybox-anaconda-0:1.00.rc1-7.el4.s390x", }, product_reference: "busybox-anaconda-0:1.00.rc1-7.el4.s390x", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "busybox-anaconda-0:1.00.rc1-7.el4.x86_64 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:busybox-anaconda-0:1.00.rc1-7.el4.x86_64", }, product_reference: "busybox-anaconda-0:1.00.rc1-7.el4.x86_64", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.i386 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:busybox-debuginfo-0:1.00.rc1-7.el4.i386", }, product_reference: "busybox-debuginfo-0:1.00.rc1-7.el4.i386", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.ia64 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:busybox-debuginfo-0:1.00.rc1-7.el4.ia64", }, product_reference: "busybox-debuginfo-0:1.00.rc1-7.el4.ia64", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.ppc as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:busybox-debuginfo-0:1.00.rc1-7.el4.ppc", }, product_reference: "busybox-debuginfo-0:1.00.rc1-7.el4.ppc", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.s390 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:busybox-debuginfo-0:1.00.rc1-7.el4.s390", }, product_reference: "busybox-debuginfo-0:1.00.rc1-7.el4.s390", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.s390x as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:busybox-debuginfo-0:1.00.rc1-7.el4.s390x", }, product_reference: "busybox-debuginfo-0:1.00.rc1-7.el4.s390x", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.x86_64 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:busybox-debuginfo-0:1.00.rc1-7.el4.x86_64", }, product_reference: "busybox-debuginfo-0:1.00.rc1-7.el4.x86_64", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.i386 as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:busybox-0:1.00.rc1-7.el4.i386", }, product_reference: "busybox-0:1.00.rc1-7.el4.i386", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.ia64 as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:busybox-0:1.00.rc1-7.el4.ia64", }, product_reference: "busybox-0:1.00.rc1-7.el4.ia64", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.ppc as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:busybox-0:1.00.rc1-7.el4.ppc", }, product_reference: "busybox-0:1.00.rc1-7.el4.ppc", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.s390 as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:busybox-0:1.00.rc1-7.el4.s390", }, product_reference: "busybox-0:1.00.rc1-7.el4.s390", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.s390x as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:busybox-0:1.00.rc1-7.el4.s390x", }, product_reference: "busybox-0:1.00.rc1-7.el4.s390x", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.src as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:busybox-0:1.00.rc1-7.el4.src", }, product_reference: "busybox-0:1.00.rc1-7.el4.src", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.x86_64 as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:busybox-0:1.00.rc1-7.el4.x86_64", }, product_reference: "busybox-0:1.00.rc1-7.el4.x86_64", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "busybox-anaconda-0:1.00.rc1-7.el4.i386 as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:busybox-anaconda-0:1.00.rc1-7.el4.i386", }, product_reference: "busybox-anaconda-0:1.00.rc1-7.el4.i386", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "busybox-anaconda-0:1.00.rc1-7.el4.ia64 as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:busybox-anaconda-0:1.00.rc1-7.el4.ia64", }, product_reference: "busybox-anaconda-0:1.00.rc1-7.el4.ia64", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "busybox-anaconda-0:1.00.rc1-7.el4.ppc as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:busybox-anaconda-0:1.00.rc1-7.el4.ppc", }, product_reference: "busybox-anaconda-0:1.00.rc1-7.el4.ppc", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "busybox-anaconda-0:1.00.rc1-7.el4.s390 as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:busybox-anaconda-0:1.00.rc1-7.el4.s390", }, product_reference: "busybox-anaconda-0:1.00.rc1-7.el4.s390", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "busybox-anaconda-0:1.00.rc1-7.el4.s390x as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:busybox-anaconda-0:1.00.rc1-7.el4.s390x", }, product_reference: "busybox-anaconda-0:1.00.rc1-7.el4.s390x", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "busybox-anaconda-0:1.00.rc1-7.el4.x86_64 as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:busybox-anaconda-0:1.00.rc1-7.el4.x86_64", }, product_reference: "busybox-anaconda-0:1.00.rc1-7.el4.x86_64", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.i386 as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:busybox-debuginfo-0:1.00.rc1-7.el4.i386", }, product_reference: "busybox-debuginfo-0:1.00.rc1-7.el4.i386", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.ia64 as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:busybox-debuginfo-0:1.00.rc1-7.el4.ia64", }, product_reference: "busybox-debuginfo-0:1.00.rc1-7.el4.ia64", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.ppc as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:busybox-debuginfo-0:1.00.rc1-7.el4.ppc", }, product_reference: "busybox-debuginfo-0:1.00.rc1-7.el4.ppc", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.s390 as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:busybox-debuginfo-0:1.00.rc1-7.el4.s390", }, product_reference: "busybox-debuginfo-0:1.00.rc1-7.el4.s390", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.s390x as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:busybox-debuginfo-0:1.00.rc1-7.el4.s390x", }, product_reference: "busybox-debuginfo-0:1.00.rc1-7.el4.s390x", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.x86_64 as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:busybox-debuginfo-0:1.00.rc1-7.el4.x86_64", }, product_reference: "busybox-debuginfo-0:1.00.rc1-7.el4.x86_64", relates_to_product_reference: "4WS", }, ], }, vulnerabilities: [ { cve: "CVE-2006-1058", discovery_date: "2006-03-29T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1618027", }, ], notes: [ { category: "description", text: "BusyBox 1.1.1 does not use a salt when generating passwords, which makes it easier for local users to guess passwords from a stolen password file using techniques such as rainbow tables.", title: "Vulnerability description", }, { category: "summary", text: "security flaw", title: "Vulnerability summary", }, { category: "other", text: "Red Hat is aware of this issue and is tracking it via the following bug:\nhttps://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=187385\n\nThe Red Hat Security Response Team has rated this issue as having low security impact, a future update may address this flaw. More information regarding issue severity can be found here:\nhttp://www.redhat.com/security/updates/classification/\n\nThis issue does not affect Red Hat Enterprise Linux 2.1 or 3.", title: "Statement", }, ], product_status: { fixed: [ "4AS:busybox-0:1.00.rc1-7.el4.i386", "4AS:busybox-0:1.00.rc1-7.el4.ia64", "4AS:busybox-0:1.00.rc1-7.el4.ppc", "4AS:busybox-0:1.00.rc1-7.el4.s390", "4AS:busybox-0:1.00.rc1-7.el4.s390x", "4AS:busybox-0:1.00.rc1-7.el4.src", "4AS:busybox-0:1.00.rc1-7.el4.x86_64", "4AS:busybox-anaconda-0:1.00.rc1-7.el4.i386", "4AS:busybox-anaconda-0:1.00.rc1-7.el4.ia64", "4AS:busybox-anaconda-0:1.00.rc1-7.el4.ppc", "4AS:busybox-anaconda-0:1.00.rc1-7.el4.s390", "4AS:busybox-anaconda-0:1.00.rc1-7.el4.s390x", "4AS:busybox-anaconda-0:1.00.rc1-7.el4.x86_64", "4AS:busybox-debuginfo-0:1.00.rc1-7.el4.i386", "4AS:busybox-debuginfo-0:1.00.rc1-7.el4.ia64", "4AS:busybox-debuginfo-0:1.00.rc1-7.el4.ppc", "4AS:busybox-debuginfo-0:1.00.rc1-7.el4.s390", "4AS:busybox-debuginfo-0:1.00.rc1-7.el4.s390x", "4AS:busybox-debuginfo-0:1.00.rc1-7.el4.x86_64", "4Desktop:busybox-0:1.00.rc1-7.el4.i386", "4Desktop:busybox-0:1.00.rc1-7.el4.ia64", "4Desktop:busybox-0:1.00.rc1-7.el4.ppc", "4Desktop:busybox-0:1.00.rc1-7.el4.s390", "4Desktop:busybox-0:1.00.rc1-7.el4.s390x", "4Desktop:busybox-0:1.00.rc1-7.el4.src", "4Desktop:busybox-0:1.00.rc1-7.el4.x86_64", "4Desktop:busybox-anaconda-0:1.00.rc1-7.el4.i386", "4Desktop:busybox-anaconda-0:1.00.rc1-7.el4.ia64", "4Desktop:busybox-anaconda-0:1.00.rc1-7.el4.ppc", "4Desktop:busybox-anaconda-0:1.00.rc1-7.el4.s390", "4Desktop:busybox-anaconda-0:1.00.rc1-7.el4.s390x", "4Desktop:busybox-anaconda-0:1.00.rc1-7.el4.x86_64", "4Desktop:busybox-debuginfo-0:1.00.rc1-7.el4.i386", "4Desktop:busybox-debuginfo-0:1.00.rc1-7.el4.ia64", "4Desktop:busybox-debuginfo-0:1.00.rc1-7.el4.ppc", "4Desktop:busybox-debuginfo-0:1.00.rc1-7.el4.s390", "4Desktop:busybox-debuginfo-0:1.00.rc1-7.el4.s390x", "4Desktop:busybox-debuginfo-0:1.00.rc1-7.el4.x86_64", "4ES:busybox-0:1.00.rc1-7.el4.i386", "4ES:busybox-0:1.00.rc1-7.el4.ia64", "4ES:busybox-0:1.00.rc1-7.el4.ppc", "4ES:busybox-0:1.00.rc1-7.el4.s390", "4ES:busybox-0:1.00.rc1-7.el4.s390x", "4ES:busybox-0:1.00.rc1-7.el4.src", "4ES:busybox-0:1.00.rc1-7.el4.x86_64", "4ES:busybox-anaconda-0:1.00.rc1-7.el4.i386", "4ES:busybox-anaconda-0:1.00.rc1-7.el4.ia64", "4ES:busybox-anaconda-0:1.00.rc1-7.el4.ppc", "4ES:busybox-anaconda-0:1.00.rc1-7.el4.s390", "4ES:busybox-anaconda-0:1.00.rc1-7.el4.s390x", "4ES:busybox-anaconda-0:1.00.rc1-7.el4.x86_64", "4ES:busybox-debuginfo-0:1.00.rc1-7.el4.i386", "4ES:busybox-debuginfo-0:1.00.rc1-7.el4.ia64", "4ES:busybox-debuginfo-0:1.00.rc1-7.el4.ppc", "4ES:busybox-debuginfo-0:1.00.rc1-7.el4.s390", "4ES:busybox-debuginfo-0:1.00.rc1-7.el4.s390x", "4ES:busybox-debuginfo-0:1.00.rc1-7.el4.x86_64", "4WS:busybox-0:1.00.rc1-7.el4.i386", "4WS:busybox-0:1.00.rc1-7.el4.ia64", "4WS:busybox-0:1.00.rc1-7.el4.ppc", "4WS:busybox-0:1.00.rc1-7.el4.s390", "4WS:busybox-0:1.00.rc1-7.el4.s390x", "4WS:busybox-0:1.00.rc1-7.el4.src", "4WS:busybox-0:1.00.rc1-7.el4.x86_64", "4WS:busybox-anaconda-0:1.00.rc1-7.el4.i386", "4WS:busybox-anaconda-0:1.00.rc1-7.el4.ia64", "4WS:busybox-anaconda-0:1.00.rc1-7.el4.ppc", "4WS:busybox-anaconda-0:1.00.rc1-7.el4.s390", "4WS:busybox-anaconda-0:1.00.rc1-7.el4.s390x", "4WS:busybox-anaconda-0:1.00.rc1-7.el4.x86_64", "4WS:busybox-debuginfo-0:1.00.rc1-7.el4.i386", "4WS:busybox-debuginfo-0:1.00.rc1-7.el4.ia64", "4WS:busybox-debuginfo-0:1.00.rc1-7.el4.ppc", "4WS:busybox-debuginfo-0:1.00.rc1-7.el4.s390", "4WS:busybox-debuginfo-0:1.00.rc1-7.el4.s390x", "4WS:busybox-debuginfo-0:1.00.rc1-7.el4.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2006-1058", }, { category: "external", summary: "RHBZ#1618027", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1618027", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2006-1058", url: "https://www.cve.org/CVERecord?id=CVE-2006-1058", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2006-1058", url: "https://nvd.nist.gov/vuln/detail/CVE-2006-1058", }, ], release_date: "2005-12-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2007-05-01T14:11:00+00:00", details: "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied. Use Red Hat\nNetwork to download and update your packages. To launch the Red Hat\nUpdate Agent, use the following command:\n\n up2date\n\nFor information on how to install packages manually, refer to the\nfollowing Web page for the System Administration or Customization\nguide specific to your system:\n\n http://www.redhat.com/docs/manuals/enterprise/", product_ids: [ "4AS:busybox-0:1.00.rc1-7.el4.i386", "4AS:busybox-0:1.00.rc1-7.el4.ia64", "4AS:busybox-0:1.00.rc1-7.el4.ppc", "4AS:busybox-0:1.00.rc1-7.el4.s390", "4AS:busybox-0:1.00.rc1-7.el4.s390x", "4AS:busybox-0:1.00.rc1-7.el4.src", "4AS:busybox-0:1.00.rc1-7.el4.x86_64", "4AS:busybox-anaconda-0:1.00.rc1-7.el4.i386", "4AS:busybox-anaconda-0:1.00.rc1-7.el4.ia64", "4AS:busybox-anaconda-0:1.00.rc1-7.el4.ppc", "4AS:busybox-anaconda-0:1.00.rc1-7.el4.s390", "4AS:busybox-anaconda-0:1.00.rc1-7.el4.s390x", "4AS:busybox-anaconda-0:1.00.rc1-7.el4.x86_64", "4AS:busybox-debuginfo-0:1.00.rc1-7.el4.i386", "4AS:busybox-debuginfo-0:1.00.rc1-7.el4.ia64", "4AS:busybox-debuginfo-0:1.00.rc1-7.el4.ppc", "4AS:busybox-debuginfo-0:1.00.rc1-7.el4.s390", "4AS:busybox-debuginfo-0:1.00.rc1-7.el4.s390x", "4AS:busybox-debuginfo-0:1.00.rc1-7.el4.x86_64", "4Desktop:busybox-0:1.00.rc1-7.el4.i386", "4Desktop:busybox-0:1.00.rc1-7.el4.ia64", "4Desktop:busybox-0:1.00.rc1-7.el4.ppc", "4Desktop:busybox-0:1.00.rc1-7.el4.s390", "4Desktop:busybox-0:1.00.rc1-7.el4.s390x", "4Desktop:busybox-0:1.00.rc1-7.el4.src", "4Desktop:busybox-0:1.00.rc1-7.el4.x86_64", "4Desktop:busybox-anaconda-0:1.00.rc1-7.el4.i386", "4Desktop:busybox-anaconda-0:1.00.rc1-7.el4.ia64", "4Desktop:busybox-anaconda-0:1.00.rc1-7.el4.ppc", "4Desktop:busybox-anaconda-0:1.00.rc1-7.el4.s390", "4Desktop:busybox-anaconda-0:1.00.rc1-7.el4.s390x", "4Desktop:busybox-anaconda-0:1.00.rc1-7.el4.x86_64", "4Desktop:busybox-debuginfo-0:1.00.rc1-7.el4.i386", "4Desktop:busybox-debuginfo-0:1.00.rc1-7.el4.ia64", "4Desktop:busybox-debuginfo-0:1.00.rc1-7.el4.ppc", "4Desktop:busybox-debuginfo-0:1.00.rc1-7.el4.s390", "4Desktop:busybox-debuginfo-0:1.00.rc1-7.el4.s390x", "4Desktop:busybox-debuginfo-0:1.00.rc1-7.el4.x86_64", "4ES:busybox-0:1.00.rc1-7.el4.i386", "4ES:busybox-0:1.00.rc1-7.el4.ia64", "4ES:busybox-0:1.00.rc1-7.el4.ppc", "4ES:busybox-0:1.00.rc1-7.el4.s390", "4ES:busybox-0:1.00.rc1-7.el4.s390x", "4ES:busybox-0:1.00.rc1-7.el4.src", "4ES:busybox-0:1.00.rc1-7.el4.x86_64", "4ES:busybox-anaconda-0:1.00.rc1-7.el4.i386", "4ES:busybox-anaconda-0:1.00.rc1-7.el4.ia64", "4ES:busybox-anaconda-0:1.00.rc1-7.el4.ppc", "4ES:busybox-anaconda-0:1.00.rc1-7.el4.s390", "4ES:busybox-anaconda-0:1.00.rc1-7.el4.s390x", "4ES:busybox-anaconda-0:1.00.rc1-7.el4.x86_64", "4ES:busybox-debuginfo-0:1.00.rc1-7.el4.i386", "4ES:busybox-debuginfo-0:1.00.rc1-7.el4.ia64", "4ES:busybox-debuginfo-0:1.00.rc1-7.el4.ppc", "4ES:busybox-debuginfo-0:1.00.rc1-7.el4.s390", "4ES:busybox-debuginfo-0:1.00.rc1-7.el4.s390x", "4ES:busybox-debuginfo-0:1.00.rc1-7.el4.x86_64", "4WS:busybox-0:1.00.rc1-7.el4.i386", "4WS:busybox-0:1.00.rc1-7.el4.ia64", "4WS:busybox-0:1.00.rc1-7.el4.ppc", "4WS:busybox-0:1.00.rc1-7.el4.s390", "4WS:busybox-0:1.00.rc1-7.el4.s390x", "4WS:busybox-0:1.00.rc1-7.el4.src", "4WS:busybox-0:1.00.rc1-7.el4.x86_64", "4WS:busybox-anaconda-0:1.00.rc1-7.el4.i386", "4WS:busybox-anaconda-0:1.00.rc1-7.el4.ia64", "4WS:busybox-anaconda-0:1.00.rc1-7.el4.ppc", "4WS:busybox-anaconda-0:1.00.rc1-7.el4.s390", "4WS:busybox-anaconda-0:1.00.rc1-7.el4.s390x", "4WS:busybox-anaconda-0:1.00.rc1-7.el4.x86_64", "4WS:busybox-debuginfo-0:1.00.rc1-7.el4.i386", "4WS:busybox-debuginfo-0:1.00.rc1-7.el4.ia64", "4WS:busybox-debuginfo-0:1.00.rc1-7.el4.ppc", "4WS:busybox-debuginfo-0:1.00.rc1-7.el4.s390", "4WS:busybox-debuginfo-0:1.00.rc1-7.el4.s390x", "4WS:busybox-debuginfo-0:1.00.rc1-7.el4.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2007:0244", }, ], threats: [ { category: "impact", details: "Low", }, ], title: "security flaw", }, ], }
rhsa-2007_0244
Vulnerability from csaf_redhat
Published
2007-05-01 14:11
Modified
2024-11-22 00:32
Summary
Red Hat Security Advisory: busybox security update
Notes
Topic
Updated busybox packages that fix a security issue are now available.
This update has been rated as having low security impact by the Red Hat
Security Response Team.
Details
Busybox is a single binary which includes versions of a large number of
system commands, including a shell. This package can be useful for
recovering from certain types of system failures.
BusyBox did not use a salt when generating passwords. This made it
easier for local users to guess passwords from a stolen password file.
(CVE-2006-1058)
All users of busybox are advised to upgrade to these updated packages,
which contain a patch to resolve this issue.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{ document: { aggregate_severity: { namespace: "https://access.redhat.com/security/updates/classification/", text: "Low", }, category: "csaf_security_advisory", csaf_version: "2.0", distribution: { text: "Copyright © Red Hat, Inc. All rights reserved.", tlp: { label: "WHITE", url: "https://www.first.org/tlp/", }, }, lang: "en", notes: [ { category: "summary", text: "Updated busybox packages that fix a security issue are now available.\n\nThis update has been rated as having low security impact by the Red Hat\nSecurity Response Team.", title: "Topic", }, { category: "general", text: "Busybox is a single binary which includes versions of a large number of\nsystem commands, including a shell. This package can be useful for\nrecovering from certain types of system failures.\n\nBusyBox did not use a salt when generating passwords. This made it\neasier for local users to guess passwords from a stolen password file. \n(CVE-2006-1058)\n\nAll users of busybox are advised to upgrade to these updated packages,\nwhich contain a patch to resolve this issue.", title: "Details", }, { category: "legal_disclaimer", text: "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.", title: "Terms of Use", }, ], publisher: { category: "vendor", contact_details: "https://access.redhat.com/security/team/contact/", issuing_authority: "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.", name: "Red Hat Product Security", namespace: "https://www.redhat.com", }, references: [ { category: "self", summary: "https://access.redhat.com/errata/RHSA-2007:0244", url: "https://access.redhat.com/errata/RHSA-2007:0244", }, { category: "external", summary: "https://access.redhat.com/security/updates/classification/#low", url: "https://access.redhat.com/security/updates/classification/#low", }, { category: "external", summary: "187385", url: "https://bugzilla.redhat.com/show_bug.cgi?id=187385", }, { category: "self", summary: "Canonical URL", url: "https://security.access.redhat.com/data/csaf/v2/advisories/2007/rhsa-2007_0244.json", }, ], title: "Red Hat Security Advisory: busybox security update", tracking: { current_release_date: "2024-11-22T00:32:28+00:00", generator: { date: "2024-11-22T00:32:28+00:00", engine: { name: "Red Hat SDEngine", version: "4.2.1", }, }, id: "RHSA-2007:0244", initial_release_date: "2007-05-01T14:11:00+00:00", revision_history: [ { date: "2007-05-01T14:11:00+00:00", number: "1", summary: "Initial version", }, { date: "2007-05-01T13:34:07+00:00", number: "2", summary: "Last updated version", }, { date: "2024-11-22T00:32:28+00:00", number: "3", summary: "Last generated version", }, ], status: "final", version: "3", }, }, product_tree: { branches: [ { branches: [ { branches: [ { category: "product_name", name: "Red Hat Enterprise Linux AS version 4", product: { name: "Red Hat Enterprise Linux AS version 4", product_id: "4AS", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:4::as", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux Desktop version 4", product: { name: "Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:4::desktop", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux ES version 4", product: { name: "Red Hat Enterprise Linux ES version 4", product_id: "4ES", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:4::es", }, }, }, { category: "product_name", name: "Red Hat Enterprise Linux WS version 4", product: { name: "Red Hat Enterprise Linux WS version 4", product_id: "4WS", product_identification_helper: { cpe: "cpe:/o:redhat:enterprise_linux:4::ws", }, }, }, ], category: "product_family", name: "Red Hat Enterprise Linux", }, { branches: [ { category: "product_version", name: "busybox-0:1.00.rc1-7.el4.ia64", product: { name: "busybox-0:1.00.rc1-7.el4.ia64", product_id: "busybox-0:1.00.rc1-7.el4.ia64", product_identification_helper: { purl: "pkg:rpm/redhat/busybox@1.00.rc1-7.el4?arch=ia64", }, }, }, { category: "product_version", name: "busybox-debuginfo-0:1.00.rc1-7.el4.ia64", product: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.ia64", product_id: "busybox-debuginfo-0:1.00.rc1-7.el4.ia64", product_identification_helper: { purl: "pkg:rpm/redhat/busybox-debuginfo@1.00.rc1-7.el4?arch=ia64", }, }, }, { category: "product_version", name: "busybox-anaconda-0:1.00.rc1-7.el4.ia64", product: { name: "busybox-anaconda-0:1.00.rc1-7.el4.ia64", product_id: "busybox-anaconda-0:1.00.rc1-7.el4.ia64", product_identification_helper: { purl: "pkg:rpm/redhat/busybox-anaconda@1.00.rc1-7.el4?arch=ia64", }, }, }, ], category: "architecture", name: "ia64", }, { branches: [ { category: "product_version", name: "busybox-0:1.00.rc1-7.el4.src", product: { name: "busybox-0:1.00.rc1-7.el4.src", product_id: "busybox-0:1.00.rc1-7.el4.src", product_identification_helper: { purl: "pkg:rpm/redhat/busybox@1.00.rc1-7.el4?arch=src", }, }, }, ], category: "architecture", name: "src", }, { branches: [ { category: "product_version", name: "busybox-0:1.00.rc1-7.el4.x86_64", product: { name: "busybox-0:1.00.rc1-7.el4.x86_64", product_id: "busybox-0:1.00.rc1-7.el4.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/busybox@1.00.rc1-7.el4?arch=x86_64", }, }, }, { category: "product_version", name: "busybox-debuginfo-0:1.00.rc1-7.el4.x86_64", product: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.x86_64", product_id: "busybox-debuginfo-0:1.00.rc1-7.el4.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/busybox-debuginfo@1.00.rc1-7.el4?arch=x86_64", }, }, }, { category: "product_version", name: "busybox-anaconda-0:1.00.rc1-7.el4.x86_64", product: { name: "busybox-anaconda-0:1.00.rc1-7.el4.x86_64", product_id: "busybox-anaconda-0:1.00.rc1-7.el4.x86_64", product_identification_helper: { purl: "pkg:rpm/redhat/busybox-anaconda@1.00.rc1-7.el4?arch=x86_64", }, }, }, ], category: "architecture", name: "x86_64", }, { branches: [ { category: "product_version", name: "busybox-0:1.00.rc1-7.el4.i386", product: { name: "busybox-0:1.00.rc1-7.el4.i386", product_id: "busybox-0:1.00.rc1-7.el4.i386", product_identification_helper: { purl: "pkg:rpm/redhat/busybox@1.00.rc1-7.el4?arch=i386", }, }, }, { category: "product_version", name: "busybox-debuginfo-0:1.00.rc1-7.el4.i386", product: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.i386", product_id: "busybox-debuginfo-0:1.00.rc1-7.el4.i386", product_identification_helper: { purl: "pkg:rpm/redhat/busybox-debuginfo@1.00.rc1-7.el4?arch=i386", }, }, }, { category: "product_version", name: "busybox-anaconda-0:1.00.rc1-7.el4.i386", product: { name: "busybox-anaconda-0:1.00.rc1-7.el4.i386", product_id: "busybox-anaconda-0:1.00.rc1-7.el4.i386", product_identification_helper: { purl: "pkg:rpm/redhat/busybox-anaconda@1.00.rc1-7.el4?arch=i386", }, }, }, ], category: "architecture", name: "i386", }, { branches: [ { category: "product_version", name: "busybox-0:1.00.rc1-7.el4.ppc", product: { name: "busybox-0:1.00.rc1-7.el4.ppc", product_id: "busybox-0:1.00.rc1-7.el4.ppc", product_identification_helper: { purl: "pkg:rpm/redhat/busybox@1.00.rc1-7.el4?arch=ppc", }, }, }, { category: "product_version", name: "busybox-debuginfo-0:1.00.rc1-7.el4.ppc", product: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.ppc", product_id: "busybox-debuginfo-0:1.00.rc1-7.el4.ppc", product_identification_helper: { purl: "pkg:rpm/redhat/busybox-debuginfo@1.00.rc1-7.el4?arch=ppc", }, }, }, { category: "product_version", name: "busybox-anaconda-0:1.00.rc1-7.el4.ppc", product: { name: "busybox-anaconda-0:1.00.rc1-7.el4.ppc", product_id: "busybox-anaconda-0:1.00.rc1-7.el4.ppc", product_identification_helper: { purl: "pkg:rpm/redhat/busybox-anaconda@1.00.rc1-7.el4?arch=ppc", }, }, }, ], category: "architecture", name: "ppc", }, { branches: [ { category: "product_version", name: "busybox-0:1.00.rc1-7.el4.s390", product: { name: "busybox-0:1.00.rc1-7.el4.s390", product_id: "busybox-0:1.00.rc1-7.el4.s390", product_identification_helper: { purl: "pkg:rpm/redhat/busybox@1.00.rc1-7.el4?arch=s390", }, }, }, { category: "product_version", name: "busybox-debuginfo-0:1.00.rc1-7.el4.s390", product: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.s390", product_id: "busybox-debuginfo-0:1.00.rc1-7.el4.s390", product_identification_helper: { purl: "pkg:rpm/redhat/busybox-debuginfo@1.00.rc1-7.el4?arch=s390", }, }, }, { category: "product_version", name: "busybox-anaconda-0:1.00.rc1-7.el4.s390", product: { name: "busybox-anaconda-0:1.00.rc1-7.el4.s390", product_id: "busybox-anaconda-0:1.00.rc1-7.el4.s390", product_identification_helper: { purl: "pkg:rpm/redhat/busybox-anaconda@1.00.rc1-7.el4?arch=s390", }, }, }, ], category: "architecture", name: "s390", }, { branches: [ { category: "product_version", name: "busybox-0:1.00.rc1-7.el4.s390x", product: { name: "busybox-0:1.00.rc1-7.el4.s390x", product_id: "busybox-0:1.00.rc1-7.el4.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/busybox@1.00.rc1-7.el4?arch=s390x", }, }, }, { category: "product_version", name: "busybox-debuginfo-0:1.00.rc1-7.el4.s390x", product: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.s390x", product_id: "busybox-debuginfo-0:1.00.rc1-7.el4.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/busybox-debuginfo@1.00.rc1-7.el4?arch=s390x", }, }, }, { category: "product_version", name: "busybox-anaconda-0:1.00.rc1-7.el4.s390x", product: { name: "busybox-anaconda-0:1.00.rc1-7.el4.s390x", product_id: "busybox-anaconda-0:1.00.rc1-7.el4.s390x", product_identification_helper: { purl: "pkg:rpm/redhat/busybox-anaconda@1.00.rc1-7.el4?arch=s390x", }, }, }, ], category: "architecture", name: "s390x", }, ], category: "vendor", name: "Red Hat", }, ], relationships: [ { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.i386 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:busybox-0:1.00.rc1-7.el4.i386", }, product_reference: "busybox-0:1.00.rc1-7.el4.i386", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.ia64 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:busybox-0:1.00.rc1-7.el4.ia64", }, product_reference: "busybox-0:1.00.rc1-7.el4.ia64", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.ppc as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:busybox-0:1.00.rc1-7.el4.ppc", }, product_reference: "busybox-0:1.00.rc1-7.el4.ppc", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.s390 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:busybox-0:1.00.rc1-7.el4.s390", }, product_reference: "busybox-0:1.00.rc1-7.el4.s390", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.s390x as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:busybox-0:1.00.rc1-7.el4.s390x", }, product_reference: "busybox-0:1.00.rc1-7.el4.s390x", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.src as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:busybox-0:1.00.rc1-7.el4.src", }, product_reference: "busybox-0:1.00.rc1-7.el4.src", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.x86_64 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:busybox-0:1.00.rc1-7.el4.x86_64", }, product_reference: "busybox-0:1.00.rc1-7.el4.x86_64", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "busybox-anaconda-0:1.00.rc1-7.el4.i386 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:busybox-anaconda-0:1.00.rc1-7.el4.i386", }, product_reference: "busybox-anaconda-0:1.00.rc1-7.el4.i386", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "busybox-anaconda-0:1.00.rc1-7.el4.ia64 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:busybox-anaconda-0:1.00.rc1-7.el4.ia64", }, product_reference: "busybox-anaconda-0:1.00.rc1-7.el4.ia64", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "busybox-anaconda-0:1.00.rc1-7.el4.ppc as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:busybox-anaconda-0:1.00.rc1-7.el4.ppc", }, product_reference: "busybox-anaconda-0:1.00.rc1-7.el4.ppc", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "busybox-anaconda-0:1.00.rc1-7.el4.s390 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:busybox-anaconda-0:1.00.rc1-7.el4.s390", }, product_reference: "busybox-anaconda-0:1.00.rc1-7.el4.s390", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "busybox-anaconda-0:1.00.rc1-7.el4.s390x as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:busybox-anaconda-0:1.00.rc1-7.el4.s390x", }, product_reference: "busybox-anaconda-0:1.00.rc1-7.el4.s390x", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "busybox-anaconda-0:1.00.rc1-7.el4.x86_64 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:busybox-anaconda-0:1.00.rc1-7.el4.x86_64", }, product_reference: "busybox-anaconda-0:1.00.rc1-7.el4.x86_64", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.i386 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:busybox-debuginfo-0:1.00.rc1-7.el4.i386", }, product_reference: "busybox-debuginfo-0:1.00.rc1-7.el4.i386", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.ia64 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:busybox-debuginfo-0:1.00.rc1-7.el4.ia64", }, product_reference: "busybox-debuginfo-0:1.00.rc1-7.el4.ia64", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.ppc as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:busybox-debuginfo-0:1.00.rc1-7.el4.ppc", }, product_reference: "busybox-debuginfo-0:1.00.rc1-7.el4.ppc", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.s390 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:busybox-debuginfo-0:1.00.rc1-7.el4.s390", }, product_reference: "busybox-debuginfo-0:1.00.rc1-7.el4.s390", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.s390x as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:busybox-debuginfo-0:1.00.rc1-7.el4.s390x", }, product_reference: "busybox-debuginfo-0:1.00.rc1-7.el4.s390x", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.x86_64 as a component of Red Hat Enterprise Linux AS version 4", product_id: "4AS:busybox-debuginfo-0:1.00.rc1-7.el4.x86_64", }, product_reference: "busybox-debuginfo-0:1.00.rc1-7.el4.x86_64", relates_to_product_reference: "4AS", }, { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.i386 as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:busybox-0:1.00.rc1-7.el4.i386", }, product_reference: "busybox-0:1.00.rc1-7.el4.i386", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.ia64 as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:busybox-0:1.00.rc1-7.el4.ia64", }, product_reference: "busybox-0:1.00.rc1-7.el4.ia64", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.ppc as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:busybox-0:1.00.rc1-7.el4.ppc", }, product_reference: "busybox-0:1.00.rc1-7.el4.ppc", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.s390 as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:busybox-0:1.00.rc1-7.el4.s390", }, product_reference: "busybox-0:1.00.rc1-7.el4.s390", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.s390x as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:busybox-0:1.00.rc1-7.el4.s390x", }, product_reference: "busybox-0:1.00.rc1-7.el4.s390x", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.src as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:busybox-0:1.00.rc1-7.el4.src", }, product_reference: "busybox-0:1.00.rc1-7.el4.src", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:busybox-0:1.00.rc1-7.el4.x86_64", }, product_reference: "busybox-0:1.00.rc1-7.el4.x86_64", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "busybox-anaconda-0:1.00.rc1-7.el4.i386 as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:busybox-anaconda-0:1.00.rc1-7.el4.i386", }, product_reference: "busybox-anaconda-0:1.00.rc1-7.el4.i386", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "busybox-anaconda-0:1.00.rc1-7.el4.ia64 as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:busybox-anaconda-0:1.00.rc1-7.el4.ia64", }, product_reference: "busybox-anaconda-0:1.00.rc1-7.el4.ia64", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "busybox-anaconda-0:1.00.rc1-7.el4.ppc as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:busybox-anaconda-0:1.00.rc1-7.el4.ppc", }, product_reference: "busybox-anaconda-0:1.00.rc1-7.el4.ppc", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "busybox-anaconda-0:1.00.rc1-7.el4.s390 as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:busybox-anaconda-0:1.00.rc1-7.el4.s390", }, product_reference: "busybox-anaconda-0:1.00.rc1-7.el4.s390", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "busybox-anaconda-0:1.00.rc1-7.el4.s390x as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:busybox-anaconda-0:1.00.rc1-7.el4.s390x", }, product_reference: "busybox-anaconda-0:1.00.rc1-7.el4.s390x", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "busybox-anaconda-0:1.00.rc1-7.el4.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:busybox-anaconda-0:1.00.rc1-7.el4.x86_64", }, product_reference: "busybox-anaconda-0:1.00.rc1-7.el4.x86_64", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.i386 as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:busybox-debuginfo-0:1.00.rc1-7.el4.i386", }, product_reference: "busybox-debuginfo-0:1.00.rc1-7.el4.i386", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.ia64 as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:busybox-debuginfo-0:1.00.rc1-7.el4.ia64", }, product_reference: "busybox-debuginfo-0:1.00.rc1-7.el4.ia64", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.ppc as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:busybox-debuginfo-0:1.00.rc1-7.el4.ppc", }, product_reference: "busybox-debuginfo-0:1.00.rc1-7.el4.ppc", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.s390 as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:busybox-debuginfo-0:1.00.rc1-7.el4.s390", }, product_reference: "busybox-debuginfo-0:1.00.rc1-7.el4.s390", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.s390x as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:busybox-debuginfo-0:1.00.rc1-7.el4.s390x", }, product_reference: "busybox-debuginfo-0:1.00.rc1-7.el4.s390x", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.x86_64 as a component of Red Hat Enterprise Linux Desktop version 4", product_id: "4Desktop:busybox-debuginfo-0:1.00.rc1-7.el4.x86_64", }, product_reference: "busybox-debuginfo-0:1.00.rc1-7.el4.x86_64", relates_to_product_reference: "4Desktop", }, { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.i386 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:busybox-0:1.00.rc1-7.el4.i386", }, product_reference: "busybox-0:1.00.rc1-7.el4.i386", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.ia64 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:busybox-0:1.00.rc1-7.el4.ia64", }, product_reference: "busybox-0:1.00.rc1-7.el4.ia64", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.ppc as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:busybox-0:1.00.rc1-7.el4.ppc", }, product_reference: "busybox-0:1.00.rc1-7.el4.ppc", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.s390 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:busybox-0:1.00.rc1-7.el4.s390", }, product_reference: "busybox-0:1.00.rc1-7.el4.s390", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.s390x as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:busybox-0:1.00.rc1-7.el4.s390x", }, product_reference: "busybox-0:1.00.rc1-7.el4.s390x", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.src as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:busybox-0:1.00.rc1-7.el4.src", }, product_reference: "busybox-0:1.00.rc1-7.el4.src", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.x86_64 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:busybox-0:1.00.rc1-7.el4.x86_64", }, product_reference: "busybox-0:1.00.rc1-7.el4.x86_64", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "busybox-anaconda-0:1.00.rc1-7.el4.i386 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:busybox-anaconda-0:1.00.rc1-7.el4.i386", }, product_reference: "busybox-anaconda-0:1.00.rc1-7.el4.i386", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "busybox-anaconda-0:1.00.rc1-7.el4.ia64 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:busybox-anaconda-0:1.00.rc1-7.el4.ia64", }, product_reference: "busybox-anaconda-0:1.00.rc1-7.el4.ia64", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "busybox-anaconda-0:1.00.rc1-7.el4.ppc as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:busybox-anaconda-0:1.00.rc1-7.el4.ppc", }, product_reference: "busybox-anaconda-0:1.00.rc1-7.el4.ppc", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "busybox-anaconda-0:1.00.rc1-7.el4.s390 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:busybox-anaconda-0:1.00.rc1-7.el4.s390", }, product_reference: "busybox-anaconda-0:1.00.rc1-7.el4.s390", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "busybox-anaconda-0:1.00.rc1-7.el4.s390x as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:busybox-anaconda-0:1.00.rc1-7.el4.s390x", }, product_reference: "busybox-anaconda-0:1.00.rc1-7.el4.s390x", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "busybox-anaconda-0:1.00.rc1-7.el4.x86_64 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:busybox-anaconda-0:1.00.rc1-7.el4.x86_64", }, product_reference: "busybox-anaconda-0:1.00.rc1-7.el4.x86_64", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.i386 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:busybox-debuginfo-0:1.00.rc1-7.el4.i386", }, product_reference: "busybox-debuginfo-0:1.00.rc1-7.el4.i386", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.ia64 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:busybox-debuginfo-0:1.00.rc1-7.el4.ia64", }, product_reference: "busybox-debuginfo-0:1.00.rc1-7.el4.ia64", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.ppc as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:busybox-debuginfo-0:1.00.rc1-7.el4.ppc", }, product_reference: "busybox-debuginfo-0:1.00.rc1-7.el4.ppc", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.s390 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:busybox-debuginfo-0:1.00.rc1-7.el4.s390", }, product_reference: "busybox-debuginfo-0:1.00.rc1-7.el4.s390", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.s390x as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:busybox-debuginfo-0:1.00.rc1-7.el4.s390x", }, product_reference: "busybox-debuginfo-0:1.00.rc1-7.el4.s390x", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.x86_64 as a component of Red Hat Enterprise Linux ES version 4", product_id: "4ES:busybox-debuginfo-0:1.00.rc1-7.el4.x86_64", }, product_reference: "busybox-debuginfo-0:1.00.rc1-7.el4.x86_64", relates_to_product_reference: "4ES", }, { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.i386 as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:busybox-0:1.00.rc1-7.el4.i386", }, product_reference: "busybox-0:1.00.rc1-7.el4.i386", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.ia64 as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:busybox-0:1.00.rc1-7.el4.ia64", }, product_reference: "busybox-0:1.00.rc1-7.el4.ia64", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.ppc as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:busybox-0:1.00.rc1-7.el4.ppc", }, product_reference: "busybox-0:1.00.rc1-7.el4.ppc", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.s390 as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:busybox-0:1.00.rc1-7.el4.s390", }, product_reference: "busybox-0:1.00.rc1-7.el4.s390", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.s390x as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:busybox-0:1.00.rc1-7.el4.s390x", }, product_reference: "busybox-0:1.00.rc1-7.el4.s390x", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.src as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:busybox-0:1.00.rc1-7.el4.src", }, product_reference: "busybox-0:1.00.rc1-7.el4.src", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "busybox-0:1.00.rc1-7.el4.x86_64 as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:busybox-0:1.00.rc1-7.el4.x86_64", }, product_reference: "busybox-0:1.00.rc1-7.el4.x86_64", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "busybox-anaconda-0:1.00.rc1-7.el4.i386 as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:busybox-anaconda-0:1.00.rc1-7.el4.i386", }, product_reference: "busybox-anaconda-0:1.00.rc1-7.el4.i386", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "busybox-anaconda-0:1.00.rc1-7.el4.ia64 as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:busybox-anaconda-0:1.00.rc1-7.el4.ia64", }, product_reference: "busybox-anaconda-0:1.00.rc1-7.el4.ia64", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "busybox-anaconda-0:1.00.rc1-7.el4.ppc as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:busybox-anaconda-0:1.00.rc1-7.el4.ppc", }, product_reference: "busybox-anaconda-0:1.00.rc1-7.el4.ppc", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "busybox-anaconda-0:1.00.rc1-7.el4.s390 as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:busybox-anaconda-0:1.00.rc1-7.el4.s390", }, product_reference: "busybox-anaconda-0:1.00.rc1-7.el4.s390", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "busybox-anaconda-0:1.00.rc1-7.el4.s390x as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:busybox-anaconda-0:1.00.rc1-7.el4.s390x", }, product_reference: "busybox-anaconda-0:1.00.rc1-7.el4.s390x", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "busybox-anaconda-0:1.00.rc1-7.el4.x86_64 as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:busybox-anaconda-0:1.00.rc1-7.el4.x86_64", }, product_reference: "busybox-anaconda-0:1.00.rc1-7.el4.x86_64", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.i386 as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:busybox-debuginfo-0:1.00.rc1-7.el4.i386", }, product_reference: "busybox-debuginfo-0:1.00.rc1-7.el4.i386", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.ia64 as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:busybox-debuginfo-0:1.00.rc1-7.el4.ia64", }, product_reference: "busybox-debuginfo-0:1.00.rc1-7.el4.ia64", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.ppc as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:busybox-debuginfo-0:1.00.rc1-7.el4.ppc", }, product_reference: "busybox-debuginfo-0:1.00.rc1-7.el4.ppc", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.s390 as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:busybox-debuginfo-0:1.00.rc1-7.el4.s390", }, product_reference: "busybox-debuginfo-0:1.00.rc1-7.el4.s390", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.s390x as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:busybox-debuginfo-0:1.00.rc1-7.el4.s390x", }, product_reference: "busybox-debuginfo-0:1.00.rc1-7.el4.s390x", relates_to_product_reference: "4WS", }, { category: "default_component_of", full_product_name: { name: "busybox-debuginfo-0:1.00.rc1-7.el4.x86_64 as a component of Red Hat Enterprise Linux WS version 4", product_id: "4WS:busybox-debuginfo-0:1.00.rc1-7.el4.x86_64", }, product_reference: "busybox-debuginfo-0:1.00.rc1-7.el4.x86_64", relates_to_product_reference: "4WS", }, ], }, vulnerabilities: [ { cve: "CVE-2006-1058", discovery_date: "2006-03-29T00:00:00+00:00", ids: [ { system_name: "Red Hat Bugzilla ID", text: "1618027", }, ], notes: [ { category: "description", text: "BusyBox 1.1.1 does not use a salt when generating passwords, which makes it easier for local users to guess passwords from a stolen password file using techniques such as rainbow tables.", title: "Vulnerability description", }, { category: "summary", text: "security flaw", title: "Vulnerability summary", }, { category: "other", text: "Red Hat is aware of this issue and is tracking it via the following bug:\nhttps://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=187385\n\nThe Red Hat Security Response Team has rated this issue as having low security impact, a future update may address this flaw. More information regarding issue severity can be found here:\nhttp://www.redhat.com/security/updates/classification/\n\nThis issue does not affect Red Hat Enterprise Linux 2.1 or 3.", title: "Statement", }, ], product_status: { fixed: [ "4AS:busybox-0:1.00.rc1-7.el4.i386", "4AS:busybox-0:1.00.rc1-7.el4.ia64", "4AS:busybox-0:1.00.rc1-7.el4.ppc", "4AS:busybox-0:1.00.rc1-7.el4.s390", "4AS:busybox-0:1.00.rc1-7.el4.s390x", "4AS:busybox-0:1.00.rc1-7.el4.src", "4AS:busybox-0:1.00.rc1-7.el4.x86_64", "4AS:busybox-anaconda-0:1.00.rc1-7.el4.i386", "4AS:busybox-anaconda-0:1.00.rc1-7.el4.ia64", "4AS:busybox-anaconda-0:1.00.rc1-7.el4.ppc", "4AS:busybox-anaconda-0:1.00.rc1-7.el4.s390", "4AS:busybox-anaconda-0:1.00.rc1-7.el4.s390x", "4AS:busybox-anaconda-0:1.00.rc1-7.el4.x86_64", "4AS:busybox-debuginfo-0:1.00.rc1-7.el4.i386", "4AS:busybox-debuginfo-0:1.00.rc1-7.el4.ia64", "4AS:busybox-debuginfo-0:1.00.rc1-7.el4.ppc", "4AS:busybox-debuginfo-0:1.00.rc1-7.el4.s390", "4AS:busybox-debuginfo-0:1.00.rc1-7.el4.s390x", "4AS:busybox-debuginfo-0:1.00.rc1-7.el4.x86_64", "4Desktop:busybox-0:1.00.rc1-7.el4.i386", "4Desktop:busybox-0:1.00.rc1-7.el4.ia64", "4Desktop:busybox-0:1.00.rc1-7.el4.ppc", "4Desktop:busybox-0:1.00.rc1-7.el4.s390", "4Desktop:busybox-0:1.00.rc1-7.el4.s390x", "4Desktop:busybox-0:1.00.rc1-7.el4.src", "4Desktop:busybox-0:1.00.rc1-7.el4.x86_64", "4Desktop:busybox-anaconda-0:1.00.rc1-7.el4.i386", "4Desktop:busybox-anaconda-0:1.00.rc1-7.el4.ia64", "4Desktop:busybox-anaconda-0:1.00.rc1-7.el4.ppc", "4Desktop:busybox-anaconda-0:1.00.rc1-7.el4.s390", "4Desktop:busybox-anaconda-0:1.00.rc1-7.el4.s390x", "4Desktop:busybox-anaconda-0:1.00.rc1-7.el4.x86_64", "4Desktop:busybox-debuginfo-0:1.00.rc1-7.el4.i386", "4Desktop:busybox-debuginfo-0:1.00.rc1-7.el4.ia64", "4Desktop:busybox-debuginfo-0:1.00.rc1-7.el4.ppc", "4Desktop:busybox-debuginfo-0:1.00.rc1-7.el4.s390", "4Desktop:busybox-debuginfo-0:1.00.rc1-7.el4.s390x", "4Desktop:busybox-debuginfo-0:1.00.rc1-7.el4.x86_64", "4ES:busybox-0:1.00.rc1-7.el4.i386", "4ES:busybox-0:1.00.rc1-7.el4.ia64", "4ES:busybox-0:1.00.rc1-7.el4.ppc", "4ES:busybox-0:1.00.rc1-7.el4.s390", "4ES:busybox-0:1.00.rc1-7.el4.s390x", "4ES:busybox-0:1.00.rc1-7.el4.src", "4ES:busybox-0:1.00.rc1-7.el4.x86_64", "4ES:busybox-anaconda-0:1.00.rc1-7.el4.i386", "4ES:busybox-anaconda-0:1.00.rc1-7.el4.ia64", "4ES:busybox-anaconda-0:1.00.rc1-7.el4.ppc", "4ES:busybox-anaconda-0:1.00.rc1-7.el4.s390", "4ES:busybox-anaconda-0:1.00.rc1-7.el4.s390x", "4ES:busybox-anaconda-0:1.00.rc1-7.el4.x86_64", "4ES:busybox-debuginfo-0:1.00.rc1-7.el4.i386", "4ES:busybox-debuginfo-0:1.00.rc1-7.el4.ia64", "4ES:busybox-debuginfo-0:1.00.rc1-7.el4.ppc", "4ES:busybox-debuginfo-0:1.00.rc1-7.el4.s390", "4ES:busybox-debuginfo-0:1.00.rc1-7.el4.s390x", "4ES:busybox-debuginfo-0:1.00.rc1-7.el4.x86_64", "4WS:busybox-0:1.00.rc1-7.el4.i386", "4WS:busybox-0:1.00.rc1-7.el4.ia64", "4WS:busybox-0:1.00.rc1-7.el4.ppc", "4WS:busybox-0:1.00.rc1-7.el4.s390", "4WS:busybox-0:1.00.rc1-7.el4.s390x", "4WS:busybox-0:1.00.rc1-7.el4.src", "4WS:busybox-0:1.00.rc1-7.el4.x86_64", "4WS:busybox-anaconda-0:1.00.rc1-7.el4.i386", "4WS:busybox-anaconda-0:1.00.rc1-7.el4.ia64", "4WS:busybox-anaconda-0:1.00.rc1-7.el4.ppc", "4WS:busybox-anaconda-0:1.00.rc1-7.el4.s390", "4WS:busybox-anaconda-0:1.00.rc1-7.el4.s390x", "4WS:busybox-anaconda-0:1.00.rc1-7.el4.x86_64", "4WS:busybox-debuginfo-0:1.00.rc1-7.el4.i386", "4WS:busybox-debuginfo-0:1.00.rc1-7.el4.ia64", "4WS:busybox-debuginfo-0:1.00.rc1-7.el4.ppc", "4WS:busybox-debuginfo-0:1.00.rc1-7.el4.s390", "4WS:busybox-debuginfo-0:1.00.rc1-7.el4.s390x", "4WS:busybox-debuginfo-0:1.00.rc1-7.el4.x86_64", ], }, references: [ { category: "self", summary: "Canonical URL", url: "https://access.redhat.com/security/cve/CVE-2006-1058", }, { category: "external", summary: "RHBZ#1618027", url: "https://bugzilla.redhat.com/show_bug.cgi?id=1618027", }, { category: "external", summary: "https://www.cve.org/CVERecord?id=CVE-2006-1058", url: "https://www.cve.org/CVERecord?id=CVE-2006-1058", }, { category: "external", summary: "https://nvd.nist.gov/vuln/detail/CVE-2006-1058", url: "https://nvd.nist.gov/vuln/detail/CVE-2006-1058", }, ], release_date: "2005-12-19T00:00:00+00:00", remediations: [ { category: "vendor_fix", date: "2007-05-01T14:11:00+00:00", details: "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied. Use Red Hat\nNetwork to download and update your packages. To launch the Red Hat\nUpdate Agent, use the following command:\n\n up2date\n\nFor information on how to install packages manually, refer to the\nfollowing Web page for the System Administration or Customization\nguide specific to your system:\n\n http://www.redhat.com/docs/manuals/enterprise/", product_ids: [ "4AS:busybox-0:1.00.rc1-7.el4.i386", "4AS:busybox-0:1.00.rc1-7.el4.ia64", "4AS:busybox-0:1.00.rc1-7.el4.ppc", "4AS:busybox-0:1.00.rc1-7.el4.s390", "4AS:busybox-0:1.00.rc1-7.el4.s390x", "4AS:busybox-0:1.00.rc1-7.el4.src", "4AS:busybox-0:1.00.rc1-7.el4.x86_64", "4AS:busybox-anaconda-0:1.00.rc1-7.el4.i386", "4AS:busybox-anaconda-0:1.00.rc1-7.el4.ia64", "4AS:busybox-anaconda-0:1.00.rc1-7.el4.ppc", "4AS:busybox-anaconda-0:1.00.rc1-7.el4.s390", "4AS:busybox-anaconda-0:1.00.rc1-7.el4.s390x", "4AS:busybox-anaconda-0:1.00.rc1-7.el4.x86_64", "4AS:busybox-debuginfo-0:1.00.rc1-7.el4.i386", "4AS:busybox-debuginfo-0:1.00.rc1-7.el4.ia64", "4AS:busybox-debuginfo-0:1.00.rc1-7.el4.ppc", "4AS:busybox-debuginfo-0:1.00.rc1-7.el4.s390", "4AS:busybox-debuginfo-0:1.00.rc1-7.el4.s390x", "4AS:busybox-debuginfo-0:1.00.rc1-7.el4.x86_64", "4Desktop:busybox-0:1.00.rc1-7.el4.i386", "4Desktop:busybox-0:1.00.rc1-7.el4.ia64", "4Desktop:busybox-0:1.00.rc1-7.el4.ppc", "4Desktop:busybox-0:1.00.rc1-7.el4.s390", "4Desktop:busybox-0:1.00.rc1-7.el4.s390x", "4Desktop:busybox-0:1.00.rc1-7.el4.src", "4Desktop:busybox-0:1.00.rc1-7.el4.x86_64", "4Desktop:busybox-anaconda-0:1.00.rc1-7.el4.i386", "4Desktop:busybox-anaconda-0:1.00.rc1-7.el4.ia64", "4Desktop:busybox-anaconda-0:1.00.rc1-7.el4.ppc", "4Desktop:busybox-anaconda-0:1.00.rc1-7.el4.s390", "4Desktop:busybox-anaconda-0:1.00.rc1-7.el4.s390x", "4Desktop:busybox-anaconda-0:1.00.rc1-7.el4.x86_64", "4Desktop:busybox-debuginfo-0:1.00.rc1-7.el4.i386", "4Desktop:busybox-debuginfo-0:1.00.rc1-7.el4.ia64", "4Desktop:busybox-debuginfo-0:1.00.rc1-7.el4.ppc", "4Desktop:busybox-debuginfo-0:1.00.rc1-7.el4.s390", "4Desktop:busybox-debuginfo-0:1.00.rc1-7.el4.s390x", "4Desktop:busybox-debuginfo-0:1.00.rc1-7.el4.x86_64", "4ES:busybox-0:1.00.rc1-7.el4.i386", "4ES:busybox-0:1.00.rc1-7.el4.ia64", "4ES:busybox-0:1.00.rc1-7.el4.ppc", "4ES:busybox-0:1.00.rc1-7.el4.s390", "4ES:busybox-0:1.00.rc1-7.el4.s390x", "4ES:busybox-0:1.00.rc1-7.el4.src", "4ES:busybox-0:1.00.rc1-7.el4.x86_64", "4ES:busybox-anaconda-0:1.00.rc1-7.el4.i386", "4ES:busybox-anaconda-0:1.00.rc1-7.el4.ia64", "4ES:busybox-anaconda-0:1.00.rc1-7.el4.ppc", "4ES:busybox-anaconda-0:1.00.rc1-7.el4.s390", "4ES:busybox-anaconda-0:1.00.rc1-7.el4.s390x", "4ES:busybox-anaconda-0:1.00.rc1-7.el4.x86_64", "4ES:busybox-debuginfo-0:1.00.rc1-7.el4.i386", "4ES:busybox-debuginfo-0:1.00.rc1-7.el4.ia64", "4ES:busybox-debuginfo-0:1.00.rc1-7.el4.ppc", "4ES:busybox-debuginfo-0:1.00.rc1-7.el4.s390", "4ES:busybox-debuginfo-0:1.00.rc1-7.el4.s390x", "4ES:busybox-debuginfo-0:1.00.rc1-7.el4.x86_64", "4WS:busybox-0:1.00.rc1-7.el4.i386", "4WS:busybox-0:1.00.rc1-7.el4.ia64", "4WS:busybox-0:1.00.rc1-7.el4.ppc", "4WS:busybox-0:1.00.rc1-7.el4.s390", "4WS:busybox-0:1.00.rc1-7.el4.s390x", "4WS:busybox-0:1.00.rc1-7.el4.src", "4WS:busybox-0:1.00.rc1-7.el4.x86_64", "4WS:busybox-anaconda-0:1.00.rc1-7.el4.i386", "4WS:busybox-anaconda-0:1.00.rc1-7.el4.ia64", "4WS:busybox-anaconda-0:1.00.rc1-7.el4.ppc", "4WS:busybox-anaconda-0:1.00.rc1-7.el4.s390", "4WS:busybox-anaconda-0:1.00.rc1-7.el4.s390x", "4WS:busybox-anaconda-0:1.00.rc1-7.el4.x86_64", "4WS:busybox-debuginfo-0:1.00.rc1-7.el4.i386", "4WS:busybox-debuginfo-0:1.00.rc1-7.el4.ia64", "4WS:busybox-debuginfo-0:1.00.rc1-7.el4.ppc", "4WS:busybox-debuginfo-0:1.00.rc1-7.el4.s390", "4WS:busybox-debuginfo-0:1.00.rc1-7.el4.s390x", "4WS:busybox-debuginfo-0:1.00.rc1-7.el4.x86_64", ], restart_required: { category: "none", }, url: "https://access.redhat.com/errata/RHSA-2007:0244", }, ], threats: [ { category: "impact", details: "Low", }, ], title: "security flaw", }, ], }
ghsa-25qj-gfr4-9mhj
Vulnerability from github
Published
2022-05-01 06:45
Modified
2024-02-09 03:32
Severity ?
Details
BusyBox 1.1.1 does not use a salt when generating passwords, which makes it easier for local users to guess passwords from a stolen password file using techniques such as rainbow tables.
{ affected: [], aliases: [ "CVE-2006-1058", ], database_specific: { cwe_ids: [ "CWE-916", ], github_reviewed: false, github_reviewed_at: null, nvd_published_at: "2006-04-04T10:04:00Z", severity: "LOW", }, details: "BusyBox 1.1.1 does not use a salt when generating passwords, which makes it easier for local users to guess passwords from a stolen password file using techniques such as rainbow tables.", id: "GHSA-25qj-gfr4-9mhj", modified: "2024-02-09T03:32:52Z", published: "2022-05-01T06:45:34Z", references: [ { type: "ADVISORY", url: "https://nvd.nist.gov/vuln/detail/CVE-2006-1058", }, { type: "WEB", url: "https://exchange.xforce.ibmcloud.com/vulnerabilities/25569", }, { type: "WEB", url: "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9483", }, { type: "WEB", url: "http://bugs.busybox.net/view.php?id=604", }, { type: "WEB", url: "http://secunia.com/advisories/19477", }, { type: "WEB", url: "http://secunia.com/advisories/25098", }, { type: "WEB", url: "http://secunia.com/advisories/25848", }, { type: "WEB", url: "http://support.avaya.com/elmodocs2/security/ASA-2007-250.htm", }, { type: "WEB", url: "http://www.redhat.com/support/errata/RHSA-2007-0244.html", }, { type: "WEB", url: "http://www.securityfocus.com/bid/17330", }, ], schema_version: "1.4.0", severity: [ { score: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", type: "CVSS_V3", }, ], }
fkie_cve-2006-1058
Vulnerability from fkie_nvd
Published
2006-04-04 10:04
Modified
2025-04-03 01:03
Severity ?
Summary
BusyBox 1.1.1 does not use a salt when generating passwords, which makes it easier for local users to guess passwords from a stolen password file using techniques such as rainbow tables.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| busybox | busybox | 1.1.1 | |
| avaya | aura_application_enablement_services | 4.01 | |
| avaya | aura_application_enablement_services | 4.1 | |
| avaya | aura_sip_enablement_services | * | |
| avaya | message_networking | * | |
| avaya | messaging_storage_server | * |
{ configurations: [ { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:busybox:busybox:1.1.1:*:*:*:*:*:*:*", matchCriteriaId: "5408DA3E-9CA1-4768-992C-1732A45C4365", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:avaya:aura_application_enablement_services:4.01:*:*:*:*:*:*:*", matchCriteriaId: "BA477675-E93D-41F6-A10C-4B6CFBA97C93", vulnerable: true, }, { criteria: "cpe:2.3:a:avaya:aura_application_enablement_services:4.1:*:*:*:*:*:*:*", matchCriteriaId: "0DBE1432-359B-4250-8381-E24511D24B14", vulnerable: true, }, { criteria: "cpe:2.3:a:avaya:aura_sip_enablement_services:*:*:*:*:*:*:*:*", matchCriteriaId: "7CCDF311-E2C3-4AAC-83D1-44938370FBFD", versionEndExcluding: "5.0", vulnerable: true, }, { criteria: "cpe:2.3:a:avaya:message_networking:*:*:*:*:*:*:*:*", matchCriteriaId: "3D8F6982-2F4D-4D78-92C1-97689D59F3A5", vulnerable: true, }, { criteria: "cpe:2.3:a:avaya:messaging_storage_server:*:*:*:*:*:*:*:*", matchCriteriaId: "9AEA45A8-8768-4CB4-8996-91D7F7AEC9F5", versionEndExcluding: "4.0", versionStartIncluding: "3.0", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, ], cveTags: [], descriptions: [ { lang: "en", value: "BusyBox 1.1.1 does not use a salt when generating passwords, which makes it easier for local users to guess passwords from a stolen password file using techniques such as rainbow tables.", }, { lang: "es", value: "BusyBox 1.1.1 no utiliza una \"sal\" cuando genera contraseñas, lo que facilita a usuarios locales adivinar contraseñas a partir de un fichero de contraseñas robado usando técnicas como tablas \"rainbow\".\r\n", }, ], id: "CVE-2006-1058", lastModified: "2025-04-03T01:03:51.193", metrics: { cvssMetricV2: [ { acInsufInfo: false, baseSeverity: "LOW", cvssData: { accessComplexity: "LOW", accessVector: "LOCAL", authentication: "NONE", availabilityImpact: "NONE", baseScore: 2.1, confidentialityImpact: "PARTIAL", integrityImpact: "NONE", vectorString: "AV:L/AC:L/Au:N/C:P/I:N/A:N", version: "2.0", }, exploitabilityScore: 3.9, impactScore: 2.9, obtainAllPrivilege: false, obtainOtherPrivilege: false, obtainUserPrivilege: false, source: "nvd@nist.gov", type: "Primary", userInteractionRequired: false, }, ], cvssMetricV31: [ { cvssData: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "NONE", baseScore: 5.5, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", version: "3.1", }, exploitabilityScore: 1.8, impactScore: 3.6, source: "nvd@nist.gov", type: "Primary", }, ], }, published: "2006-04-04T10:04:00.000", references: [ { source: "secalert@redhat.com", tags: [ "Broken Link", ], url: "http://bugs.busybox.net/view.php?id=604", }, { source: "secalert@redhat.com", tags: [ "Broken Link", "Vendor Advisory", ], url: "http://secunia.com/advisories/19477", }, { source: "secalert@redhat.com", tags: [ "Broken Link", ], url: "http://secunia.com/advisories/25098", }, { source: "secalert@redhat.com", tags: [ "Broken Link", ], url: "http://secunia.com/advisories/25848", }, { source: "secalert@redhat.com", tags: [ "Third Party Advisory", ], url: "http://support.avaya.com/elmodocs2/security/ASA-2007-250.htm", }, { source: "secalert@redhat.com", tags: [ "Broken Link", ], url: "http://www.redhat.com/support/errata/RHSA-2007-0244.html", }, { source: "secalert@redhat.com", tags: [ "Broken Link", "Third Party Advisory", "VDB Entry", ], url: "http://www.securityfocus.com/bid/17330", }, { source: "secalert@redhat.com", tags: [ "Third Party Advisory", "VDB Entry", ], url: "https://exchange.xforce.ibmcloud.com/vulnerabilities/25569", }, { source: "secalert@redhat.com", tags: [ "Broken Link", ], url: "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9483", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Broken Link", ], url: "http://bugs.busybox.net/view.php?id=604", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Broken Link", "Vendor Advisory", ], url: "http://secunia.com/advisories/19477", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Broken Link", ], url: "http://secunia.com/advisories/25098", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Broken Link", ], url: "http://secunia.com/advisories/25848", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Third Party Advisory", ], url: "http://support.avaya.com/elmodocs2/security/ASA-2007-250.htm", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Broken Link", ], url: "http://www.redhat.com/support/errata/RHSA-2007-0244.html", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Broken Link", "Third Party Advisory", "VDB Entry", ], url: "http://www.securityfocus.com/bid/17330", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Third Party Advisory", "VDB Entry", ], url: "https://exchange.xforce.ibmcloud.com/vulnerabilities/25569", }, { source: "af854a3a-2127-422b-91ae-364da2661108", tags: [ "Broken Link", ], url: "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9483", }, ], sourceIdentifier: "secalert@redhat.com", vendorComments: [ { comment: "Red Hat is aware of this issue and is tracking it via the following bug:\nhttps://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=187385\n\nThe Red Hat Security Response Team has rated this issue as having low security impact, a future update may address this flaw. More information regarding issue severity can be found here:\nhttp://www.redhat.com/security/updates/classification/\n\nThis issue does not affect Red Hat Enterprise Linux 2.1 or 3.", lastModified: "2006-09-19T00:00:00", organization: "Red Hat", }, ], vulnStatus: "Deferred", weaknesses: [ { description: [ { lang: "en", value: "CWE-916", }, ], source: "nvd@nist.gov", type: "Primary", }, ], }
gsd-2006-1058
Vulnerability from gsd
Modified
2023-12-13 01:19
Details
BusyBox 1.1.1 does not use a salt when generating passwords, which makes it easier for local users to guess passwords from a stolen password file using techniques such as rainbow tables.
Aliases
Aliases
{ GSD: { alias: "CVE-2006-1058", description: "BusyBox 1.1.1 does not use a salt when generating passwords, which makes it easier for local users to guess passwords from a stolen password file using techniques such as rainbow tables.", id: "GSD-2006-1058", references: [ "https://www.suse.com/security/cve/CVE-2006-1058.html", "https://access.redhat.com/errata/RHSA-2007:0244", "https://linux.oracle.com/cve/CVE-2006-1058.html", ], }, gsd: { metadata: { exploitCode: "unknown", remediation: "unknown", reportConfidence: "confirmed", type: "vulnerability", }, osvSchema: { aliases: [ "CVE-2006-1058", ], details: "BusyBox 1.1.1 does not use a salt when generating passwords, which makes it easier for local users to guess passwords from a stolen password file using techniques such as rainbow tables.", id: "GSD-2006-1058", modified: "2023-12-13T01:19:54.719936Z", schema_version: "1.4.0", }, }, namespaces: { "cve.org": { CVE_data_meta: { ASSIGNER: "secalert@redhat.com", ID: "CVE-2006-1058", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "n/a", version: { version_data: [ { version_affected: "=", version_value: "n/a", }, ], }, }, ], }, vendor_name: "n/a", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "BusyBox 1.1.1 does not use a salt when generating passwords, which makes it easier for local users to guess passwords from a stolen password file using techniques such as rainbow tables.", }, ], }, problemtype: { problemtype_data: [ { description: [ { lang: "eng", value: "n/a", }, ], }, ], }, references: { reference_data: [ { name: "http://secunia.com/advisories/25098", refsource: "MISC", url: "http://secunia.com/advisories/25098", }, { name: "http://bugs.busybox.net/view.php?id=604", refsource: "MISC", url: "http://bugs.busybox.net/view.php?id=604", }, { name: "http://secunia.com/advisories/19477", refsource: "MISC", url: "http://secunia.com/advisories/19477", }, { name: "http://secunia.com/advisories/25848", refsource: "MISC", url: "http://secunia.com/advisories/25848", }, { name: "http://support.avaya.com/elmodocs2/security/ASA-2007-250.htm", refsource: "MISC", url: "http://support.avaya.com/elmodocs2/security/ASA-2007-250.htm", }, { name: "http://www.redhat.com/support/errata/RHSA-2007-0244.html", refsource: "MISC", url: "http://www.redhat.com/support/errata/RHSA-2007-0244.html", }, { name: "http://www.securityfocus.com/bid/17330", refsource: "MISC", url: "http://www.securityfocus.com/bid/17330", }, { name: "https://exchange.xforce.ibmcloud.com/vulnerabilities/25569", refsource: "MISC", url: "https://exchange.xforce.ibmcloud.com/vulnerabilities/25569", }, { name: "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9483", refsource: "MISC", url: "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9483", }, ], }, }, "nvd.nist.gov": { cve: { configurations: [ { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:busybox:busybox:1.1.1:*:*:*:*:*:*:*", matchCriteriaId: "5408DA3E-9CA1-4768-992C-1732A45C4365", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:a:avaya:aura_application_enablement_services:4.01:*:*:*:*:*:*:*", matchCriteriaId: "BA477675-E93D-41F6-A10C-4B6CFBA97C93", vulnerable: true, }, { criteria: "cpe:2.3:a:avaya:aura_application_enablement_services:4.1:*:*:*:*:*:*:*", matchCriteriaId: "0DBE1432-359B-4250-8381-E24511D24B14", vulnerable: true, }, { criteria: "cpe:2.3:a:avaya:aura_sip_enablement_services:*:*:*:*:*:*:*:*", matchCriteriaId: "7CCDF311-E2C3-4AAC-83D1-44938370FBFD", versionEndExcluding: "5.0", vulnerable: true, }, { criteria: "cpe:2.3:a:avaya:message_networking:*:*:*:*:*:*:*:*", matchCriteriaId: "3D8F6982-2F4D-4D78-92C1-97689D59F3A5", vulnerable: true, }, { criteria: "cpe:2.3:a:avaya:messaging_storage_server:*:*:*:*:*:*:*:*", matchCriteriaId: "9AEA45A8-8768-4CB4-8996-91D7F7AEC9F5", versionEndExcluding: "4.0", versionStartIncluding: "3.0", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, ], descriptions: [ { lang: "en", value: "BusyBox 1.1.1 does not use a salt when generating passwords, which makes it easier for local users to guess passwords from a stolen password file using techniques such as rainbow tables.", }, { lang: "es", value: "BusyBox 1.1.1 no utiliza una \"sal\" cuando genera contraseñas, lo que facilita a usuarios locales adivinar contraseñas a partir de un fichero de contraseñas robado usando técnicas como tablas \"rainbow\".\r\n", }, ], id: "CVE-2006-1058", lastModified: "2024-02-09T03:05:29.307", metrics: { cvssMetricV2: [ { acInsufInfo: false, baseSeverity: "LOW", cvssData: { accessComplexity: "LOW", accessVector: "LOCAL", authentication: "NONE", availabilityImpact: "NONE", baseScore: 2.1, confidentialityImpact: "PARTIAL", integrityImpact: "NONE", vectorString: "AV:L/AC:L/Au:N/C:P/I:N/A:N", version: "2.0", }, exploitabilityScore: 3.9, impactScore: 2.9, obtainAllPrivilege: false, obtainOtherPrivilege: false, obtainUserPrivilege: false, source: "nvd@nist.gov", type: "Primary", userInteractionRequired: false, }, ], cvssMetricV31: [ { cvssData: { attackComplexity: "LOW", attackVector: "LOCAL", availabilityImpact: "NONE", baseScore: 5.5, baseSeverity: "MEDIUM", confidentialityImpact: "HIGH", integrityImpact: "NONE", privilegesRequired: "LOW", scope: "UNCHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N", version: "3.1", }, exploitabilityScore: 1.8, impactScore: 3.6, source: "nvd@nist.gov", type: "Primary", }, ], }, published: "2006-04-04T10:04:00.000", references: [ { source: "secalert@redhat.com", tags: [ "Broken Link", ], url: "http://bugs.busybox.net/view.php?id=604", }, { source: "secalert@redhat.com", tags: [ "Broken Link", "Vendor Advisory", ], url: "http://secunia.com/advisories/19477", }, { source: "secalert@redhat.com", tags: [ "Broken Link", ], url: "http://secunia.com/advisories/25098", }, { source: "secalert@redhat.com", tags: [ "Broken Link", ], url: "http://secunia.com/advisories/25848", }, { source: "secalert@redhat.com", tags: [ "Third Party Advisory", ], url: "http://support.avaya.com/elmodocs2/security/ASA-2007-250.htm", }, { source: "secalert@redhat.com", tags: [ "Broken Link", ], url: "http://www.redhat.com/support/errata/RHSA-2007-0244.html", }, { source: "secalert@redhat.com", tags: [ "Broken Link", "Third Party Advisory", "VDB Entry", ], url: "http://www.securityfocus.com/bid/17330", }, { source: "secalert@redhat.com", tags: [ "Third Party Advisory", "VDB Entry", ], url: "https://exchange.xforce.ibmcloud.com/vulnerabilities/25569", }, { source: "secalert@redhat.com", tags: [ "Broken Link", ], url: "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9483", }, ], sourceIdentifier: "secalert@redhat.com", vendorComments: [ { comment: "Red Hat is aware of this issue and is tracking it via the following bug:\nhttps://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=187385\n\nThe Red Hat Security Response Team has rated this issue as having low security impact, a future update may address this flaw. More information regarding issue severity can be found here:\nhttp://www.redhat.com/security/updates/classification/\n\nThis issue does not affect Red Hat Enterprise Linux 2.1 or 3.", lastModified: "2006-09-19T00:00:00", organization: "Red Hat", }, ], vulnStatus: "Analyzed", weaknesses: [ { description: [ { lang: "en", value: "CWE-916", }, ], source: "nvd@nist.gov", type: "Primary", }, ], }, }, }, }
Log in or create an account to share your comment.
Security Advisory comment format.
This schema specifies the format of a comment related to a security advisory.
UUIDv4 of the comment
UUIDv4 of the Vulnerability-Lookup instance
When the comment was created originally
When the comment was last updated
Title of the comment
Description of the comment
The identifier of the vulnerability (CVE ID, GHSA-ID, PYSEC ID, etc.).
Loading…
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.