kumquat-buildroot

History

Matt Weber ddd47a70a8 package/tar: ignore CVE-2007-4476 https://security-tracker.debian.org/tracker/CVE-2007-4476 Currently NVD has this incorrectly tagged for all versions. The bug trackers on different distros show it was generally fixed in versions >= 1.16 but because the impacted source code is in the GNU paxutils, it is hard to follow in what cases tar has been fixed around that 1.16 version. https://bugs.gentoo.org/196978 https://www.itsecdb.com/oval/definition/oval/org.mitre.oval/def/9336/Buffer-overflow-in-the-safer-name-suffix-function-in-GNU-tar.html Signed-off-by: Matthew Weber <matthew.weber@rockwellcollins.com> Signed-off-by: Yann E. MORIN <yann.morin.1998@free.fr> (cherry picked from commit `9486774bbf`) Signed-off-by: Peter Korsgaard <peter@korsgaard.com>		2021-04-26 22:27:30 +02:00
..
0001-Fix-memory-leak-in-read_header.patch
Config.in
tar.hash
tar.mk