On Thu, Jan 13, 2022 at 04:42:18PM +0100, Christian Melki wrote: > Busybox saw > 14 CVE:s in 2021. > (Apparently someone got bored and started digging in Busybox...) > https://jfrog.com/blog/unboxing-busybox-14-new-vulnerabilities-uncovered-by-claroty-and-jfrog/ > > 1.31.1 is > 2 yo. > https://www.cvedetails.com/product/7452/Busybox-Busybox.html?vendor_id=4282
Right, nobody cares enough about busybox in general to update it regularly... And with the config stuff, it's a bit more complex than other packages. I'll take care of it. It should hit master in the near future. Michael -- Pengutronix e.K. | | Steuerwalder Str. 21 | http://www.pengutronix.de/ | 31137 Hildesheim, Germany | Phone: +49-5121-206917-0 | Amtsgericht Hildesheim, HRA 2686 | Fax: +49-5121-206917-5555 | _______________________________________________ ptxdist mailing list [email protected] To unsubscribe, send a mail with subject "unsubscribe" to [email protected]
