Radoslav Kolev 87aa4d01af - Fix arbitrary file overwrite and potential code execution via ...

incomplete path sanitization (CVE-2026-26157, bsc#1258163),
  fix arbitrary file modification and privilege escalation via
  unvalidated tar archive entries (CVE-2026-26158, bsc#1258167)
  * 0001-tar-strip-unsafe-hardlink-components-GNU-tar-does-th.patch
  * 0002-tar-only-strip-unsafe-components-from-hardlinks-not-.patch

OBS-URL: https://build.opensuse.org/package/show/Base:System/busybox?expand=0&rev=149

2026-02-18 10:29:18 +00:00

40 KiB

Raw Permalink Blame History

View Raw