busybox-static-1.35.0-150500.10.3.3<>,TeF)p9|' N"=擔\ f7En)>2Q ~aҔpr~YUuDp H,n¢RƮ2XY[j's^'oa۫S*m/uۉD<~NKM)S.Hzk2[z޸n_kWh!'J 4`z}AKD,RA7|lޠbcKݸ 2Mbu?ִ˲A ~\`>;&?&d & j# 9E^dlx ~    $3Bht(+84191:.1F#WG#lH#xI#X#Y#\#]#^#b$1c$d%\e%af%dl%fu%xv%z&<&L&P&V&Cbusybox-static1.35.0150500.10.3.3Static linked version of Busybox, a compact UNIX utility collectionBusyBox combines tiny versions of many common UNIX utilities into a single executable.eF)h03-ch2a'f,SUSE Linux Enterprise 15SUSE LLC GPL-2.0-or-laterhttps://www.suse.com/System/Basehttps://www.busybox.net/linuxx86_64'GA큤eFeF(aȞ17216933155c01e07604763ad04bdb9afbd5bf76794ddf1817b81065ae1ff107bbfc9843646d483c334664f651c208b9839626891d8f17604db2146962f43548rootrootrootrootrootrootbusybox-1.35.0-150500.10.3.3.src.rpmbusybox-staticbusybox-static(x86-64)    rpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)3.0.4-14.6.0-14.0-15.2-14.14.3dc~ @cr-cMCb@b2@bDF@b; aaa}3ay?@araqV@aqV@aa@`+`@_T_T_м@_@__s!_?@_3_*@_*@_ _@^@^v^ku^Q^AE^>]@]w@]^]9\\@[}P@ZYX@XV'@V @U4@radoslav.kolev@suse.comdimstar@opensuse.orgradoslav.kolev@suse.comradoslav.kolev@suse.comlnussel@suse.dempdesouza@suse.commpdesouza@suse.comdimstar@opensuse.orgkukuk@suse.comradoslav.kolev@suse.comcoolo@suse.comeich@suse.comlukas.lansky@suse.comcoolo@suse.comcoolo@suse.comeich@suse.comandreas.stieger@gmx.dekukuk@suse.comkukuk@suse.comkukuk@suse.comkukuk@suse.comkukuk@suse.comlnussel@suse.dekukuk@suse.comkukuk@suse.comkukuk@suse.comkukuk@suse.comkukuk@suse.comkukuk@suse.comcoolo@suse.comkukuk@suse.comkukuk@suse.comkukuk@suse.comkukuk@suse.comkukuk@suse.comdimstar@opensuse.orgkukuk@suse.dejengelh@inai.dekukuk@suse.dekukuk@suse.dekukuk@suse.dekukuk@suse.dejjolly@suse.comkukuk@suse.deastieger@suse.comastieger@suse.comolaf@aepfle.dep.drouand@gmail.commpluskal@suse.com- Add ash-fix-segfault-d417193cf.patch: fix stack overflow vulnerability in ash (CVE-2022-48174, bsc#1214538)- Add e63d7cdf.patch: awk: fix use after free (CVE-2022-30065, boo#1199744).- Fix build under SLE-12- Annotate CVEs already fixed in upstream, but not mentioned in .changes: * CVE-2014-9645 (bsc#914660): strips of / in module names that can lead to loading unwanted modules- prepare spec file for rpmbuild --build-in-place --noprep - use bcond for static and ww3 subpackages - fix verbose flag- Enable switch_root With this change virtme --force-initramfs works as expected.- Enable udhcpc- BuildRequire hostname: the test suite wants to compare the output of 'hostname' against 'busybox hostname'. We should not rely hostname to be present in the build environment.- Update to 1.35.0 - awk: fix printf %%, fix read beyond end of buffer - chrt: silence analyzer warning - libarchive: remove duplicate forward declaration - mount: "mount -o rw ...." should not fall back to RO mount - ps: fix -o pid=PID,args interpreting entire "PID,args" as header - tar: prevent malicious archives with long name sizes causing OOM - udhcpc6: fix udhcp_find_option to actually find DHCP6 options - xxd: fix -p -r - support for new optoins added to basename, cpio, date, find, mktemp, wget and others - Adjust busybox.config for new features in find, date and cpio- Annotate CVEs already fixed in upstream, but not mentioned in .changes: * CVE-2017-16544 (bsc#1069412): Insufficient sanitization of filenames when autocompleting * CVE-2015-9261 (bsc#1102912): huft_build misuses a pointer, causing segfaults * CVE-2016-2147 (bsc#970663): out of bounds write (heap) due to integer underflow in udhcpc * CVE-2016-2148 (bsc#970662): heap-based buffer overflow in OPTION_6RD parsing * CVE-2016-6301 (bsc#991940): NTP server denial of service flaw * CVE-2017-15873 (bsc#1064976): The get_next_block function in archival/libarchive/decompress_bunzip2.c has an Integer Overflow * CVE-2017-15874 (bsc#1064978): archival/libarchive/decompress_unlzma.c has an Integer Underflow * CVE-2019-5747 (bsc#1121428): out of bounds read in udhcp components * CVE-2021-42373, CVE-2021-42374, CVE-2021-42375, CVE-2021-42376, CVE-2021-42377, CVE-2021-42378, CVE-2021-42379, CVE-2021-42380, CVE-2021-42381, CVE-2021-42382, CVE-2021-42383, CVE-2021-42384, CVE-2021-42385, CVE-2021-42386 (bsc#1192869) : v1.34.0 bugfixes - CVE-2021-28831 (bsc#1184522): invalid free or segmentation fault via malformed gzip data - CVE-2018-20679 (bsc#1121426): out of bounds read in udhcp - CVE-2018-1000517 (bsc#1099260): Heap-based buffer overflow in the retrieve_file_data() - CVE-2011-5325 (bsc#951562): tar directory traversal - CVE-2018-1000500 (bsc#1099263): wget: Missing SSL certificate validation- Disable crc32 to avoid conflict with perl-Archive-Zip (until some project really requires crc32)- Build busybox-warewulf3 for i586 as well. This allowes to set up i586 nodes.- Enable fdisk (jsc#CAR-16) - Add testsuite-gnu-echo.patch: testing.sh to use GNU echo- Remove the duplicated config entries and construct the snippets on the fly based on the main config. This way it's easier to keep track of what's different- Update to 1.34.1: * build system: use SOURCE_DATE_EPOCH for timestamp if available * many bug fixes and new features * touch: make FEATURE_TOUCH_NODEREF unconditional- Create separate 'Warewulf3' (https://github.com/warewulf/warewulf3) flavor of busybox with the additional setting: CONFIG_REBOOT=y CONFIG_SWITCH_ROOT=y CONFIG_CTTYHACK=y (bsc#1191514).- update to 1.33.1: * httpd: fix sendfile * ash: fix HISTFILE corruptio * ash: fix unset variable pattern expansion * traceroute: fix option parsing * gunzip: fix for archive corruption - drop update_passwd_selinux_fix.patch, included upstream - add upstream signing key and verify source signature- Update to version 1.33.0 - many bug fixes and new features - update_passwd_selinux_fix.patch upstream compile fix for SELinux- Update to version 1.32.1 - fixes a case where in ash, "wait" never finishes.- sendmail-ignore-F-option.patch: ignore -F option as used by cron (workaround for [bbn#13426])- Don't require nogroup for adduser command, as this can lead to a dependency cycle with sysusers-tools.- cpio-long-opt.patch: add more long options to cpio for IBS/unrpm- prepare usrmerge (boo#1029961)- Disable RPM builtin, did become pretty useless - Disable popmaildir and mime utilities- Set CONFIG_FIRST_SYSTEM_ID to 101 as we use 100 already as fixed ID for a system account. - Require group "nogroup" (used by adduser)- Enable SELinux for the dynamic version- Update to busybox 1.32.0 - many bugfixes and new features - Obsoletes busybox-no-stime.patch- Disable ftpget/ftpput, non-standard, ftp is outdated - Disable run-init, we don't use that - Disable cttyhack, we don't provide the calling tools - Disable dnsd- Enable syslogd for containers- Enable testsuite and package it for later rerun (for QA, jsc#CAR-15)- Re-add modutils- Set last ID to 65533, else nobody cannot be created- Merge config of default, -container and -static to be able to drop -container variant- Disable CONFIG_FEATURE_NSLOOKUP_BIG as it leads to incompatible nslookup behavior- Eanble FEATURE_TFTP_HPA_COMPAT and SH_MATH_BASE- Update to version 1.31.1: + Bug fix release. 1.30.1 has fixes for dc, ash (PS1 expansion fix), hush, dpkg-deb, telnet and wget. - Changes from version 1.31.0: + many bugfixes and new features. - Add busybox-no-stime.patch: stime() has been deprecated in glibc 2.31 and replaced with clock_settime().- Add man.conf to container variant- Trim marketing from description.- Drop busybox-rpm-E.patch, not needed anymore - Create new "container" subpackage with special stripped down version for container images (8MB instead of 15MB).- Provide "useradd_or_adduser_dep" for sysuser-shadow- Implement rpm -E %_dbpath for kiwi (busybox-rpm-E.patch) - Don't require /bin/sh, be self contained- update to 1.30.1 * many bugfixes and new features - obsolete busybox-1.18.3-libarchive.patch - obsolete busybox-resource.patch - Update busybox*.config - Merge busybox.spec and busybox-static.spec and build the static binary as subpackage- Enabled functionality within busybox for warewulf compatibility * CONFIG_FEATURE_REMOTE_LOG * CONFIG_DEPMOD * CONFIG_TAC- Build against libtirpc in preparation of deprecating sunrpc from glibc- update to 1.26.2: * many updates and fixes to individual tools- update to 1.25.1: * fixes for hush, gunzip, ip route, ntpd - includes changes from 1.25.0: * many added and expanded implementations of command options - includes changes from 1.24.2: * fixes for build system (static build with glibc fixed), truncate, gunzip and unzip.- Disable build timestamp- Update to version 1.24.1 * for a full list of changes see http://www.busybox.net/news.html - Refresh busybox.install.patch- Update to 1.23.2 * for a full list of changes see http://www.busybox.net/news.html - Cleaned up spec file with spec-cleaner - Refreshed patchesh03-ch2a 16956308891.35.0-150500.10.3.31.35.0-150500.10.3.3busybox-staticbusybox-staticLICENSE/usr/bin//usr/share/licenses//usr/share/licenses/busybox-static/-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -gobs://build.suse.de/SUSE:Maintenance:30527/SUSE_SLE-15-SP5_Update/a05c42f8f8f3a014ce884d30caed9857-busybox.SUSE_SLE-15-SP5_Updatedrpmxz5x86_64-suse-linuxELF 64-bit LSB executable, x86-64, version 1 (GNU/Linux), statically linked, BuildID[sha1]=8c6a413349381a45e78f942c950f3e082505d481, for GNU/Linux 3.2.0, strippeddirectoryASCII textp.D4&OpNnMutf-8817dc7063dbb6c4825af54f9dc065c1eab892e4081f7a3619fde1d310b1c2caa?P7zXZ !t/; *(]"k%IXI^Fj,~/VHZnf-_(3nO?V(n}h5JX 9A#hjDE ^ HОQ !DL6+cE9ևiT+b3,HOή7Wf[rzGRUHZ) ogWCM.$P(fR=`ѿʕ5KxrJLO/s\K|΂j9lb0Njxg>G Huj8 %Xߎ= B(84NM]2 Dܮfη;qV"\m^Si|so lhGG^y(W}HwۇFtXadpQmlUB-<~J_AqZrt1z?G׌l'\+<>(Ɨb%|Ȧ J[ɧ@rĜl\15+ۡOLʕl@UYNgé@ HI&>ǓDzuy# ɩ4 C}j? ڂl.Hz]<N\P W7쐱_jvE}PxJ7u!R qO.I0:x3S!pa]TE| "},X5M]X_p,c^:M^OZ'1`&Ift)eHt"Lϵ><""SnR^{: dz<޺CpxCs:D?CyĥdEm Fy9G^4N SA3D]b.m BJ /,xtsZޣX41SDjQ@SWo=H6-ƛO ;sL4ܩ}&ib<ێ=cGU9\̰[["PϴfـL,[#j0G/AXKHzZ.c{5*pܟKm‰G9IL&9F@Cw4 TSIvtJ+`0+'{رɂ]t6Jn,8NGЃ /%?$(!_NQ5=Gep0젒SgvʣYV=SjRUNT)N{Fl~RScȇ|} z\o|sR&3 cDյ[3ɓK 6pW%$e8?^_aou[:*"$ %d:`"7G$O(kgs&P?WGiʒLm6.[q@i>gS/V":Dwakͻ!#yVl_Eٛ{+I qa)sZ0<,\PF&"pk}o98aHAHCSĠg (V~in |\cE\P7R!뛎e̷M҆fBeǶGr}sz]<8T/Y/;sdH/e-R=jsSݖT׏*#~ jaiR_rP3D!|u'EZ'&qyy+Ў_zEjjnz%G9{}7Oˉ[K8s/>'˒x$frݨ:aQ=.BFʑχ(7"#;X*<|+/[.mL6z6 Ē kό-OHEf3 _v[c$&:C\06GPWhflRc~EZat~%3'u A0\}mmn" ^?fw˷S7 $)O I ̑3b"lT?&tMmskeb;"G'"(U[fզ,@.Q[׮b܎XB0h?>>ti= #I; UK.ݳ6Tquے y佇ig &HE-]qWϰQ.)X T@lc>;zkh;[Կ`_*]Ի (D먛cMHک@aV-XX}Em֫<om艊Y^_^zawMgʂT1U(J)VVk+,x@kl!`s]0K Qy|i]&ĨB <T mfmbj)90l/̰ vTp.8a ) R'' % ε;Y)Ϙ89E>H [+u8P ]3Y??N+F|هCW6Qxq0\a4e s>]z1Np?Vc*өӺ\L_[9h-Si2Irս 9(nx-|SDzPKmy֚r rJ/:XgvCHCI^qĪYǙퟡ%sBAszҖ~cÜfbJ,gv*NhT\skӉ$,C&2ނ;okBTCO٫"qkM5ϵ[͘K|[=B|ϖ8c IgM6!`] >;D?ɥ E"/Z.z[Ն VL~¢8fEqʁ~Z|/4z\j3aϔ+3x&./Wüad ~.-9C9?-L̗h+Q]b0N 2-kS1p)[ ^RH 9DZ_aBPL9qC抬UMpPjY >32 /1:L\̵p aTQBZ$Ep6ɾCn6tȬaG6<+_ ‘0GĶ?"H'pkCp WjW>%<{c x%֢p3]ppHg_!joL7|XN"pL=Pi7zM$#׉;Di6>Lմ ?1:l頖bߡU9i)T(s)ly{w#:cu_PrJ ~Q  Wz'0lYH-Ms&[ E;\<͕#/B\nds"mWǭllIRn-_(Foq*HrFTeO:gt#:2v[s*+>FLzF҇pA;gTi 2>[ [!o5K`Z Z˧cg/z5%4rgUl X1Nb 1 w/3JgW,J£^^Uû[Rӌ3?u[wwy?kr [s Z`̼ϓVm!iW`^6i| Ū.<zBq+1|pJ qJ?[Z|BVXƵTSA #7 h8VF^'Fug&tg1!m~ӓO~ǛCxEC|GpAq A9wu%Yk*Zim :T>V1ZT5 1r~\nS (-Kg|d¤Eo;>=K2K\KOJs~AcVO&@%YsE2O F y~Z\v0R(~u4h,x)!OuvHջ6cnT3x:7;)?=|z\rspH6xH⭑nM^P .Z!;9Ua%AX+Q цLր&[0$*9xo o?4<>ٻyDϭu_r x R<_d;9O 7ǂЩ'檹 L mŗ)2 pEᦿqװ12>м]JٰT%-d0P6ɜ/g Xn576Cdy҄").J#[Q\*+Z$H!_|{",I92eخ2dAhQ'9f7Umc=PeOXpq!j Ѣ]ޕV)5O%"Q!6}u[Ƭ'PN0CW8\_e6DKL_]U;MC =UOMEWCA+b4lP"eYg3Wmzrt\R)mk~|\_D}6ϔ #%"_?BE,Rc% Qѫ47qt`Vٌq99g ~`92w[G-g{EYTaP{P jßJ$CBPccL#bxn/֤Z(njLOOhO-iaX XkkMK1$G廬yRJG}$jӊ*]K@AFx5)ڲx4WiB.J\\8èHОե*"M4%= m\}igsOJuG̓ /G47b^ږq90ID*{kjYQ뽀'@r$RB*ܲrlee/S:Cjt/\ H +5ȝoÛ/[b|pZ3(#mJ ̸ kV7Fd"1I7:Z303x#\|-ة9#J_)3H>WTLpnjy}.Uz< /C{z=jurYG{lz +Axe5drz19";W CV)GXD<6SwK׍i=֋npe >8ie=]: ECbHL<]F Ǩrܜ F )Uɵ6W~\M pn &Mz@X&bl򊳖u-~*MVQXScjq/{9uuCeWR9t7ߐ@oکJO[vcW?YtO9 ?fM0Xח= *Oa{ 3%V l+%] >W([ DM9߄pjKdd̼ŬE2G߬G 73gP*\R&p.qD*PuAے-5,ÎL)QXV0uBGg0F)]G* Ȝ k,j4pBc\fPd=O*HlLЀ_@"IW+eiYG)ޢ#E,Eo;{}?P-C|}Excn!ep0,vEa yrd{$kqB{4A @;I Mи#qfbEH]o > "nn1K>y c1ڶ25<ҥL a?9ˠ*"Hӯ7S '.MX!=',vBco uR]Ge4;.,H@$sn* ^ڪ;V.ܶsUE$w+Yrc%p k f'5\cx7&›(! , x=Z@jYqtol8XJrǼ) #æ Oo[zo[!>4R|U60;䨞IT7Ec .zە^02 [}!\9O4@`cɦ]_aQ(ZP.?\ uÇ T;{6 aٸÿ4T's 2Qڜ EzɔErκ~p43p]08ׇXXqJ (꟡xq< L\oA1€PږS_z$<i9EOy-:b#4}2S!;B]K; c=lEB g -Ջ-A q'gf6PlxUcti⩲Hq[B=X+o6t쫠mQ[}Q<% ySlY2Hixj~] z6a m'{4`_&Y^3C$nlx8R2Nxgg`)~k?@ +[C|v6j~U"7_R]ǸCJ)kUOEԶ4]sRk%ܰ.Bůs+" jkX\fEٓpEm[+pxhTI m`RcUu:jm^l~yO, 32`& vpcՅA[L8T3@odhMFpZ2k ˰`s {.J jӺWr5lXuj3>d2l_$9t呺WM1շ*|$cce&cz!W$<&JH19xt^ ZwW;64mc/FϰҔH_ap0'r!^w+i+$֒M[ "EpͲX6DSvXӇOV)X8Hݩ#j>l;hK qkn;(KGҀ34GI"4[[>ߩx MB#!HhN 9 W,N#sa%,JBk' u4/Do~L3,vCjv:/iI_D 0.&͝%rcɃ|^E@] _ES |~RP KpkEΔuJ&[O}Odv߷FF i!q5 ^""E&JAkOc#gwR##%>0PM #P/5^#:8|q-LJQM.!1|j g0=! r+IBV4i34;IVwXhutBtn.\ɟ{Mv*@qQa>k$Uo^A|eL84vk㮇ѷ':xcL;%&F4gf%D[$ 8|r-EI+ibYXf}LР&wN9$,U-荔q Se/em8-su'o2+AE9bZ6-Qkܛw}* E|M?!ltbEk;[&JAs<Gɧ:M\R&?'>IY 6wb^!Ժ YHFo@T;\Hsce :mQkW8(*1ΆS<gdVKeֿ=(cZ|XۅOz4L60a Z8NJI ࠯czHG fN!/#d~=!i3p3]o\~WB4۽#ZQcPpeu]h1$:cexnJTvu$ YZ