157dc65fb7
The version bump doesn't inherently fix the security issues, however the added CVE patches do, which fix: CVE-2016-2147 - out of bounds write (heap) due to integer underflow in udhcpc. CVE-2016-2148 - heap-based buffer overflow in OPTION_6RD parsing. Drop patches that are upstream as well. Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar> Signed-off-by: Peter Korsgaard <peter@korsgaard.com> |
||
|---|---|---|
| .. | ||
| 0001-networking-libiproute-use-linux-if_packet.h-instead-.patch | ||
| 0002-Makefile.flags-strip-non-l-arguments-returned-by-pkg.patch | ||
| 0003-ash-recursive-heredocs.patch | ||
| 0004-fix-CVE-2016-2147.patch | ||
| 0005-fix-CVE-2016-2148.patch | ||
| busybox.config | ||
| busybox.hash | ||
| busybox.mk | ||
| Config.in | ||
| inittab | ||
| mdev.conf | ||
| S01logging | ||
| S10mdev | ||
| S15watchdog | ||
| S50telnet | ||
| udhcpc.script | ||