Index index by Group index by Distribution index by Vendor index by creation date index by Name Mirrors Help Search

busybox-1.37.0-2.1 RPM for aarch64

From OpenSuSE Ports Tumbleweed for aarch64

Name: busybox Distribution: openSUSE Tumbleweed
Version: 1.37.0 Vendor: openSUSE
Release: 2.1 Build date: Mon Oct 7 09:59:23 2024
Group: Unspecified Build host: reproducible
Size: 1384076 Source RPM: busybox-1.37.0-2.1.src.rpm
Packager: http://bugs.opensuse.org
Url: https://www.busybox.net/
Summary: Minimalist variant of UNIX utilities linked in a single executable
BusyBox combines tiny versions of many common UNIX utilities into a
single executable. It provides minimalist replacements for utilities
usually found in fileutils, shellutils, findutils, textutils, grep,
gzip, tar, and more. BusyBox provides a fairly complete POSIX
environment for small or embedded systems. The utilities in BusyBox
generally have fewer options than their GNU cousins. The options that
are included provide the expected functionality and behave much like
their GNU counterparts.
BusyBox is for emergency and special use cases. Replacing the standard
tools in a system is not supported. Some tools don't work out of the
box but need special configuration, like udhcpc, the dhcp client.

Provides

Requires

License

GPL-2.0-or-later

Changelog

* Mon Oct 07 2024 Guillaume GARDET <guillaume.gardet@opensuse.org>
  - Add patch to fix build on non-x86* architectures:
    * busybox-1.37.0-fix-conditional-for-sha1_process_block64_shaNI.patch
* Fri Oct 04 2024 Thorsten Kukuk <kukuk@suse.com>
  - Fix busybox.config again (got broken with 1.37.0 update)
  - Cleanup spec file
* Sat Sep 28 2024 Matthias G. Eckermann <mge@suse.com>
  - Update to 1.37.0
  - remove unnecessary patch ash-fix-segfault-d417193cf.patch
  - Update default config to match 1.37.0 expectations
* Thu Mar 14 2024 Thorsten Kukuk <kukuk@suse.com>
  - tc-no-TCA_CBQ.patch: Disable TCA_CBQ code if kernel headers don't
    support them.
* Fri Dec 08 2023 Thorsten Kukuk <kukuk@suse.com>
  - Install udhcpc and udhcpc6 into the same directory
    (udhcp6-install-path.patch)
  - Fully enable udhcpc and document that this tool needs special
    configuration and does not work out of the box [bsc#1217883]
* Tue Aug 29 2023 Radoslav Kolev <radoslav.kolev@suse.com>
  -  Add ash-fix-segfault-d417193cf.patch: fix stack overflow vulnerability
    in ash (CVE-2022-48174, bsc#1214538)
* Fri Jun 02 2023 Dirk Müller <dmueller@suse.com>
  - update to 1.36.1:
    * fixes for line editing, detection of hardware sha1/sha256
      support, unzip
    (do not create suid/sgid files unless -K),
      shell (printf and sleep with no args, handing of SIGINT
      in sleep), ed.
* Fri Jan 06 2023 Radoslav Kolev <radoslav.kolev@suse.com>
  - Update to version 1.36.0
    - awk: fix use after free (CVE-2022-30065)
    - various fixes for ash, bc, cut, fbset, kbuild, libbb, mkfs.vfat,
      mv, powertop, sed, sort, taskset, top, udhcpc6, unzip, vi, xxd
    - improvements in ash, cmp, crond, devmem, ed, fbset, fdisk, ls, xargs, pkill
    - new applets added: seedrng, tree, tsort
  - Adjust busybox.config for new features
    - ash: enable sleep built-in
    - enable new applets: seedrng, tree, tsort
    - enable SHA hardware acceleration
    - try LOOP_CONFIGURE for losetup/loop mounts, but fall back to
      LOOP_SET_FD + LOOP_SET_STATUS if not supported
  - drop e63d7cdf.patch (fix for CVE-2022-30065), included upstream
* Tue Dec 27 2022 Ludwig Nussel <lnussel@suse.com>
  - Replace transitional %usrmerged macro with regular version check (boo#1206798)
* Wed Nov 23 2022 Dominique Leuenberger <dimstar@opensuse.org>
  - Add e63d7cdf.patch: awk: fix use after free (CVE-2022-30065,
    boo#1199744).
* Mon Nov 14 2022 Radoslav Kolev <radoslav.kolev@suse.com>
  - Fix build under SLE-12
* Mon Oct 17 2022 Radoslav Kolev <radoslav.kolev@suse.com>
  - Annotate CVEs already fixed in upstream, but not mentioned in .changes:
    * CVE-2014-9645 (bsc#914660):  strips of / in module names that can lead to loading unwanted modules
* Thu Jun 30 2022 Ludwig Nussel <lnussel@suse.de>
  - prepare spec file for rpmbuild --build-in-place --noprep
  - use bcond for static and ww3 subpackages
  - fix verbose flag
* Fri Jun 10 2022 Marcos de Souza <mpdesouza@suse.com>
  - Enable switch_root
    With this change virtme --force-initramfs works as expected.
* Wed Mar 30 2022 Marcos de Souza <mpdesouza@suse.com>
  - Enable udhcpc
* Wed Mar 23 2022 Dominique Leuenberger <dimstar@opensuse.org>
  - BuildRequire hostname: the test suite wants to compare the output
    of 'hostname' against 'busybox hostname'. We should not rely
    hostname to be present in the build environment.
* Wed Jan 12 2022 Thorsten Kukuk <kukuk@suse.com>
  - Update to 1.35.0
    - awk: fix printf %%, fix read beyond end of buffer
    - chrt: silence analyzer warning
    - libarchive: remove duplicate forward declaration
    - mount: "mount -o rw ...." should not fall back to RO mount
    - ps: fix -o pid=PID,args interpreting entire "PID,args" as header
    - tar: prevent malicious archives with long name sizes causing OOM
    - udhcpc6: fix udhcp_find_option to actually find DHCP6 options
    - xxd: fix -p -r
    - support for new optoins added to basename, cpio, date, find,
      mktemp, wget and others
  - Adjust busybox.config for new features in find, date and cpio
* Thu Jan 06 2022 Radoslav Kolev <radoslav.kolev@suse.com>
  - Annotate CVEs already fixed in upstream, but not mentioned in .changes:
    * CVE-2017-16544 (bsc#1069412): Insufficient sanitization of filenames when autocompleting
    * CVE-2015-9261 (bsc#1102912): huft_build misuses a pointer, causing segfaults
    * CVE-2016-2147 (bsc#970663): out of bounds write (heap) due to integer underflow in udhcpc
    * CVE-2016-2148 (bsc#970662): heap-based buffer overflow in OPTION_6RD parsing
    * CVE-2016-6301 (bsc#991940): NTP server denial of service flaw
    * CVE-2017-15873 (bsc#1064976): The get_next_block function in archival/libarchive/decompress_bunzip2.c has an Integer Overflow
    * CVE-2017-15874 (bsc#1064978): archival/libarchive/decompress_unlzma.c has an Integer Underflow
    * CVE-2019-5747 (bsc#1121428): out of bounds read in udhcp components
    * CVE-2021-42373, CVE-2021-42374, CVE-2021-42375, CVE-2021-42376,
      CVE-2021-42377, CVE-2021-42378, CVE-2021-42379, CVE-2021-42380,
      CVE-2021-42381, CVE-2021-42382, CVE-2021-42383, CVE-2021-42384,
      CVE-2021-42385, CVE-2021-42386 (bsc#1192869) : v1.34.0 bugfixes
    - CVE-2021-28831 (bsc#1184522): invalid free or segmentation fault via malformed gzip data
    - CVE-2018-20679 (bsc#1121426): out of bounds read in udhcp
    - CVE-2018-1000517 (bsc#1099260):  Heap-based buffer overflow in the retrieve_file_data()
    - CVE-2011-5325 (bsc#951562): tar directory traversal
    - CVE-2018-1000500 (bsc#1099263):  wget: Missing SSL certificate validation
* Sat Oct 30 2021 Stephan Kulow <coolo@suse.com>
  - Disable crc32 to avoid conflict with perl-Archive-Zip
    (until some project really requires crc32)
* Wed Oct 27 2021 Egbert Eich <eich@suse.com>
  - Build busybox-warewulf3 for i586 as well. This allowes to set up
    i586 nodes.
* Fri Oct 22 2021 Lukas Lansky <lukas.lansky@suse.com>
  - Enable fdisk (jsc#CAR-16)
  - Add testsuite-gnu-echo.patch: testing.sh to use GNU echo
* Thu Oct 21 2021 Stephan Kulow <coolo@suse.com>
  - Remove the duplicated config entries and construct the snippets
    on the fly based on the main config. This way it's easier to
    keep track of what's different
* Thu Oct 21 2021 Stephan Kulow <coolo@suse.com>
  - Update to 1.34.1:
    * build system: use SOURCE_DATE_EPOCH for timestamp if available
    * many bug fixes and new features
    * touch: make FEATURE_TOUCH_NODEREF unconditional
* Sat Oct 09 2021 Egbert Eich <eich@suse.com>
  - Create separate 'Warewulf3' (https://github.com/warewulf/warewulf3)
    flavor of busybox with the
    additional setting:
    CONFIG_REBOOT=y
    CONFIG_SWITCH_ROOT=y
    CONFIG_CTTYHACK=y
    (bsc#1191514).
* Fri May 07 2021 Andreas Stieger <andreas.stieger@gmx.de>
  - update to 1.33.1:
    * httpd: fix sendfile
    * ash: fix HISTFILE corruptio
    * ash: fix unset variable pattern expansion
    * traceroute: fix option parsing
    * gunzip: fix for archive corruption
  - drop update_passwd_selinux_fix.patch, included upstream
  - add upstream signing key and verify source signature
* Thu Jan 28 2021 Thorsten Kukuk <kukuk@suse.com>
  - Update to version 1.33.0
    - many bug fixes and new features
  - update_passwd_selinux_fix.patch upstream compile fix for SELinux
* Tue Jan 05 2021 Thorsten Kukuk <kukuk@suse.com>
  - Update to version 1.32.1
    - fixes a case where in ash, "wait" never finishes.
* Tue Jan 05 2021 Thorsten Kukuk <kukuk@suse.com>
  - sendmail-ignore-F-option.patch: ignore -F option as used by
    cron (workaround for [bbn#13426])

Files

/etc/man.conf
/usr/bin/busybox
/usr/bin/busybox.install
/usr/share/busybox
/usr/share/busybox/busybox.links
/usr/share/doc/packages/busybox
/usr/share/doc/packages/busybox/mdev.txt
/usr/share/licenses/busybox
/usr/share/licenses/busybox/LICENSE
/usr/share/man/man1/busybox.1.gz


Generated by rpm2html 1.8.1

Fabrice Bellet, Thu Nov 14 00:43:26 2024