Many of the programs that inject environment variables could rightly
sanitise their data.
It may provide relief for system builders that provide updated busybox but
not updated bash.
Or safety where stupid use of eval is made in scripts, or careless use of
system/popen is made in programs.
To
Hello,
I've noticed that in several cases when my router was busy, watchdog
forced a reboot on the system. That patch increases the priority of the
watchdog compared to other processes.
regards,
Nikos
From 58b001ee3a728cccf66ec0b8ae3d29d74494d93b Mon Sep 17 00:00:00 2001
From: Nikos
Sean Mathews wrote:
In regard to CVE-2014-7169 CVE-2014-6271 looking at
busybox-1.22.1/networking/udhcp/dhcpc.c line 403 fill_envp() it seems
as if it would be trivial to mess with bootfile and inject a packet
that has garbage in the bootfile and exploit this vulnerability.
We should keep in
On Wednesday 24 September 2014 23:02:55 tito wrote:
On Saturday 20 September 2014 16:32:01 tito wrote:
Hi,
One more fix of a return value.
Ciao,
Tito
Hi,
more return value and errno fixes.
Ciao,
Tito
Hi,
make the tokenize function more robust.
Ciao,
Tito
/* vi: set sw=4
On Fri, Sep 26, 2014 at 11:24 AM, Miroslav Lichvar mlich...@redhat.com wrote:
On Thu, Sep 25, 2014 at 06:52:32PM +0200, Denys Vlasenko wrote:
On Thu, Sep 25, 2014 at 5:47 PM, Denys Vlasenko
How about this patch?
* on step, poll interval drops to 8.5 mins instead of 32 seconds
Ok, that's an