Index | index by Group | index by Distribution | index by Vendor | index by creation date | index by Name | Mirrors | Help | Search |
Name: busybox-static | Distribution: openSUSE Tumbleweed |
Version: 1.37.0 | Vendor: openSUSE |
Release: 2.2 | Build date: Mon Oct 7 09:59:23 2024 |
Group: Unspecified | Build host: reproducible |
Size: 2362608 | Source RPM: busybox-1.37.0-2.2.src.rpm |
Packager: http://bugs.opensuse.org | |
Url: https://www.busybox.net/ | |
Summary: Static linked version of Busybox, a compact UNIX utility collection |
BusyBox combines tiny versions of many common UNIX utilities into a single executable.
GPL-2.0-or-later
* Mon Oct 07 2024 Guillaume GARDET <guillaume.gardet@opensuse.org> - Add patch to fix build on non-x86* architectures: * busybox-1.37.0-fix-conditional-for-sha1_process_block64_shaNI.patch * Fri Oct 04 2024 Thorsten Kukuk <kukuk@suse.com> - Fix busybox.config again (got broken with 1.37.0 update) - Cleanup spec file * Sat Sep 28 2024 Matthias G. Eckermann <mge@suse.com> - Update to 1.37.0 - remove unnecessary patch ash-fix-segfault-d417193cf.patch - Update default config to match 1.37.0 expectations * Thu Mar 14 2024 Thorsten Kukuk <kukuk@suse.com> - tc-no-TCA_CBQ.patch: Disable TCA_CBQ code if kernel headers don't support them. * Fri Dec 08 2023 Thorsten Kukuk <kukuk@suse.com> - Install udhcpc and udhcpc6 into the same directory (udhcp6-install-path.patch) - Fully enable udhcpc and document that this tool needs special configuration and does not work out of the box [bsc#1217883] * Tue Aug 29 2023 Radoslav Kolev <radoslav.kolev@suse.com> - Add ash-fix-segfault-d417193cf.patch: fix stack overflow vulnerability in ash (CVE-2022-48174, bsc#1214538) * Fri Jun 02 2023 Dirk Müller <dmueller@suse.com> - update to 1.36.1: * fixes for line editing, detection of hardware sha1/sha256 support, unzip (do not create suid/sgid files unless -K), shell (printf and sleep with no args, handing of SIGINT in sleep), ed. * Fri Jan 06 2023 Radoslav Kolev <radoslav.kolev@suse.com> - Update to version 1.36.0 - awk: fix use after free (CVE-2022-30065) - various fixes for ash, bc, cut, fbset, kbuild, libbb, mkfs.vfat, mv, powertop, sed, sort, taskset, top, udhcpc6, unzip, vi, xxd - improvements in ash, cmp, crond, devmem, ed, fbset, fdisk, ls, xargs, pkill - new applets added: seedrng, tree, tsort - Adjust busybox.config for new features - ash: enable sleep built-in - enable new applets: seedrng, tree, tsort - enable SHA hardware acceleration - try LOOP_CONFIGURE for losetup/loop mounts, but fall back to LOOP_SET_FD + LOOP_SET_STATUS if not supported - drop e63d7cdf.patch (fix for CVE-2022-30065), included upstream * Tue Dec 27 2022 Ludwig Nussel <lnussel@suse.com> - Replace transitional %usrmerged macro with regular version check (boo#1206798) * Wed Nov 23 2022 Dominique Leuenberger <dimstar@opensuse.org> - Add e63d7cdf.patch: awk: fix use after free (CVE-2022-30065, boo#1199744). * Mon Nov 14 2022 Radoslav Kolev <radoslav.kolev@suse.com> - Fix build under SLE-12 * Mon Oct 17 2022 Radoslav Kolev <radoslav.kolev@suse.com> - Annotate CVEs already fixed in upstream, but not mentioned in .changes: * CVE-2014-9645 (bsc#914660): strips of / in module names that can lead to loading unwanted modules * Thu Jun 30 2022 Ludwig Nussel <lnussel@suse.de> - prepare spec file for rpmbuild --build-in-place --noprep - use bcond for static and ww3 subpackages - fix verbose flag * Fri Jun 10 2022 Marcos de Souza <mpdesouza@suse.com> - Enable switch_root With this change virtme --force-initramfs works as expected. * Wed Mar 30 2022 Marcos de Souza <mpdesouza@suse.com> - Enable udhcpc * Wed Mar 23 2022 Dominique Leuenberger <dimstar@opensuse.org> - BuildRequire hostname: the test suite wants to compare the output of 'hostname' against 'busybox hostname'. We should not rely hostname to be present in the build environment. * Wed Jan 12 2022 Thorsten Kukuk <kukuk@suse.com> - Update to 1.35.0 - awk: fix printf %%, fix read beyond end of buffer - chrt: silence analyzer warning - libarchive: remove duplicate forward declaration - mount: "mount -o rw ...." should not fall back to RO mount - ps: fix -o pid=PID,args interpreting entire "PID,args" as header - tar: prevent malicious archives with long name sizes causing OOM - udhcpc6: fix udhcp_find_option to actually find DHCP6 options - xxd: fix -p -r - support for new optoins added to basename, cpio, date, find, mktemp, wget and others - Adjust busybox.config for new features in find, date and cpio * Thu Jan 06 2022 Radoslav Kolev <radoslav.kolev@suse.com> - Annotate CVEs already fixed in upstream, but not mentioned in .changes: * CVE-2017-16544 (bsc#1069412): Insufficient sanitization of filenames when autocompleting * CVE-2015-9261 (bsc#1102912): huft_build misuses a pointer, causing segfaults * CVE-2016-2147 (bsc#970663): out of bounds write (heap) due to integer underflow in udhcpc * CVE-2016-2148 (bsc#970662): heap-based buffer overflow in OPTION_6RD parsing * CVE-2016-6301 (bsc#991940): NTP server denial of service flaw * CVE-2017-15873 (bsc#1064976): The get_next_block function in archival/libarchive/decompress_bunzip2.c has an Integer Overflow * CVE-2017-15874 (bsc#1064978): archival/libarchive/decompress_unlzma.c has an Integer Underflow * CVE-2019-5747 (bsc#1121428): out of bounds read in udhcp components * CVE-2021-42373, CVE-2021-42374, CVE-2021-42375, CVE-2021-42376, CVE-2021-42377, CVE-2021-42378, CVE-2021-42379, CVE-2021-42380, CVE-2021-42381, CVE-2021-42382, CVE-2021-42383, CVE-2021-42384, CVE-2021-42385, CVE-2021-42386 (bsc#1192869) : v1.34.0 bugfixes - CVE-2021-28831 (bsc#1184522): invalid free or segmentation fault via malformed gzip data - CVE-2018-20679 (bsc#1121426): out of bounds read in udhcp - CVE-2018-1000517 (bsc#1099260): Heap-based buffer overflow in the retrieve_file_data() - CVE-2011-5325 (bsc#951562): tar directory traversal - CVE-2018-1000500 (bsc#1099263): wget: Missing SSL certificate validation * Sat Oct 30 2021 Stephan Kulow <coolo@suse.com> - Disable crc32 to avoid conflict with perl-Archive-Zip (until some project really requires crc32) * Wed Oct 27 2021 Egbert Eich <eich@suse.com> - Build busybox-warewulf3 for i586 as well. This allowes to set up i586 nodes. * Fri Oct 22 2021 Lukas Lansky <lukas.lansky@suse.com> - Enable fdisk (jsc#CAR-16) - Add testsuite-gnu-echo.patch: testing.sh to use GNU echo * Thu Oct 21 2021 Stephan Kulow <coolo@suse.com> - Remove the duplicated config entries and construct the snippets on the fly based on the main config. This way it's easier to keep track of what's different * Thu Oct 21 2021 Stephan Kulow <coolo@suse.com> - Update to 1.34.1: * build system: use SOURCE_DATE_EPOCH for timestamp if available * many bug fixes and new features * touch: make FEATURE_TOUCH_NODEREF unconditional * Sat Oct 09 2021 Egbert Eich <eich@suse.com> - Create separate 'Warewulf3' (https://github.com/warewulf/warewulf3) flavor of busybox with the additional setting: CONFIG_REBOOT=y CONFIG_SWITCH_ROOT=y CONFIG_CTTYHACK=y (bsc#1191514). * Fri May 07 2021 Andreas Stieger <andreas.stieger@gmx.de> - update to 1.33.1: * httpd: fix sendfile * ash: fix HISTFILE corruptio * ash: fix unset variable pattern expansion * traceroute: fix option parsing * gunzip: fix for archive corruption - drop update_passwd_selinux_fix.patch, included upstream - add upstream signing key and verify source signature * Thu Jan 28 2021 Thorsten Kukuk <kukuk@suse.com> - Update to version 1.33.0 - many bug fixes and new features - update_passwd_selinux_fix.patch upstream compile fix for SELinux * Tue Jan 05 2021 Thorsten Kukuk <kukuk@suse.com> - Update to version 1.32.1 - fixes a case where in ash, "wait" never finishes. * Tue Jan 05 2021 Thorsten Kukuk <kukuk@suse.com> - sendmail-ignore-F-option.patch: ignore -F option as used by cron (workaround for [bbn#13426])
/usr/bin/busybox-static /usr/share/licenses/busybox-static /usr/share/licenses/busybox-static/LICENSE
Generated by rpm2html 1.8.1
Fabrice Bellet, Sat Dec 21 00:22:59 2024