[scarthgap] busybox: Fix CVE-2026-29004

Return-Path: <hsimeliere.opensource@witekio.com>
X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on
	aws-us-west-2-korg-lkml-1.web.codeaurora.org
Received: from aws-us-west-2-korg-lkml-1.web.codeaurora.org
 (localhost.localdomain [127.0.0.1])
	by smtp.lore.kernel.org (Postfix) with ESMTP id 3FB49CD4F54
	for <webhook@archiver.kernel.org>; Wed, 20 May 2026 10:44:40 +0000 (UTC)
Received: from mx-relay14-hz12-if1.hornetsecurity.com
 (mx-relay14-hz12-if1.hornetsecurity.com [94.100.139.214])
 by mx.groups.io with SMTP id smtpd.msgproc01-g2.9368.1779273871533182049
 for <openembedded-core@lists.openembedded.org>;
 Wed, 20 May 2026 03:44:32 -0700
Authentication-Results: mx.groups.io;
 dkim=pass header.i=@witekio.com header.s=selector1 header.b=qBbNE0gk;
 spf=permerror,
 err=parse error for token &{10 18 spf.hornetsecurity.com}: limit exceeded
 (domain: witekio.com, ip: 94.100.139.214, mailfrom: hsimeliere@witekio.com)
Received: from mail-francesouthazon11021100.outbound.protection.outlook.com
 ([40.107.130.100]) by mx-gate14-hz12;
 Wed, 20 May 2026 12:44:29 +0200
ARC-Seal: i=1; a=rsa-sha256; s=arcselector10001; d=microsoft.com; cv=none;
 b=Dup9BXUIp4kI+HgCPNaztJlNJKi7P8EmFRJVDWvAYs66M10gyEgsUDM0gUNgzUY7fEJAUcEOxgQFoBwrwvB1RBVK2Da9uuSgDZnqV/XxJU67JlhKt/dSHkB1chJFbWePAnYr+wuMaPzSE1B1QuwJay9/yvnYUARcfXG/BEPFfTFJyyRexpVxc5ZMUaszXhyg1kOIJ3Mq5Kfxlfs+VO82/6HAzDj8O4Z/ZFT2NIP46uakhlWsci9IfdXgAjODzOLMLlEDTQkoFjpHIuiMBfKWPntT4AxSEN+n4c9MPse17uy8GxH00+KoSkghVtpnPx1vRYeOhR+JvnB5Yxm1fo8L5A==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com;
 s=arcselector10001;
 h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1;
 bh=XsMvgXGjn/7ZiG6MwpI4pHEaV5fbj8CL40PnPMIf9nM=;
 b=YJeYIn8/TQFjRrDc9JZiHCiSVlMwmdevBnyz/XHTLgyvWhSVO5Orj4MsCOFaKpP39bN9roVs/9lPF+3XtiLuP3bg9qzo+rVXWU3KJeMzKw7vG9wo+QVP1pS931nyEkoqeEGYIRLNPSzaD0VTSrV28RAT7z1Zyy1h1qMwXC1A+Ok2K69/+7H6c/SRMum/5gQ4wJonwqaOqlHb8M12Zv0FlVaxVU+ATZZ7ObMnCh83Xzz6UVtNGDCEpNdZHQLsYWpogUbVQ+zFXEMBQ2ypqqs0uPzZ6HKldhzWkwdn93GEqhOYerdOdY6zA1psUOArGJl3DtbBwthMfjReoIehXcuZqw==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass
 smtp.mailfrom=witekio.com; dmarc=pass action=none header.from=witekio.com;
 dkim=pass header.d=witekio.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=witekio.com;
 s=selector1;
 h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck;
 bh=XsMvgXGjn/7ZiG6MwpI4pHEaV5fbj8CL40PnPMIf9nM=;
 b=qBbNE0gkbfRHjC3rFlOa2wHUaxYVpSS13Ffntu1ff8eNTJ/ibkmO4xfPYt8xg9bVbidg89am9bgyMdqH6e3YbgfacCrbKYwJJS9bmf4dPIZtpBY58pp9aDQsda9LtPAFTuKS8tgD9LOwR+kewM7pdHt3YLJ3hGuyeso0wQfNSjgyv6E5UCfQDkQdC2PeWEJhW/cXrkiPoka0uHSUPC7IyCErGNAz4/OaYAPvq2HFUz3X5HdIhAbACqSL+zkqYDUAbf1SPnpQ1Mjwxk9VqNtXYc0Np/udSwPlD7O8otBjfBnYE8eSQe29jh6Frdr3nQXhNVbFnPeCI+xseoH8A14HJg==
Authentication-Results: dkim=none (message not signed)
 header.d=none;dmarc=none action=none header.from=witekio.com;
Received: from MRWP192MB3504.EURP192.PROD.OUTLOOK.COM (2603:10a6:501:87::6) by
 DB9P192MB1564.EURP192.PROD.OUTLOOK.COM (2603:10a6:10:33a::8) with Microsoft
 SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id
 15.21.48.14; Wed, 20 May 2026 10:44:21 +0000
Received: from MRWP192MB3504.EURP192.PROD.OUTLOOK.COM
 ([fe80::e437:672a:5abc:a0f4]) by MRWP192MB3504.EURP192.PROD.OUTLOOK.COM
 ([fe80::e437:672a:5abc:a0f4%6]) with mapi id 15.21.0025.020; Wed, 20 May 2026
 10:44:21 +0000
From: hsimeliere.opensource@witekio.com
To: openembedded-core@lists.openembedded.org
Cc: "Hugo SIMELIERE (Schneider Electric)" <hsimeliere.opensource@witekio.com>,
	Bruno VERNAY <bruno.vernay@se.com>
Subject: [OE-core][scarthgap][PATCH] busybox: Fix CVE-2026-29004
Date: Wed, 20 May 2026 12:44:13 +0200
Message-ID: <20260520104413.3108569-1-hsimeliere.opensource@witekio.com>
X-Mailer: git-send-email 2.43.0
Content-Transfer-Encoding: 8bit
Content-Type: text/plain
X-ClientProxiedBy: LO4P123CA0479.GBRP123.PROD.OUTLOOK.COM
 (2603:10a6:600:1a8::16) To MRWP192MB3504.EURP192.PROD.OUTLOOK.COM
 (2603:10a6:501:87::6)
MIME-Version: 1.0
X-MS-PublicTrafficType: Email
X-MS-TrafficTypeDiagnostic: MRWP192MB3504:EE_|DB9P192MB1564:EE_
X-MS-Office365-Filtering-Correlation-Id: 5eebd3ed-7a40-4150-cf99-08deb65cc082
X-MS-Exchange-SenderADCheck: 1
X-MS-Exchange-AntiSpam-Relay: 0
X-Microsoft-Antispam: 
	BCL:0;ARA:13230040|376014|52116014|10070799003|1800799024|366016|13003099007|56012099003|18002099003|12006099003;
X-Microsoft-Antispam-Message-Info: 
	ys1UlWLJCdRdTo7EMavr0jnDkbVqpUv3pTYe3sPUuIahYwZFZBTXdC2ztF3Bswc9pf2e2obVE7l9V2IsweVSFcCppti153EcOEOHtqT00LnHzcUwsO4f3RwREN873RByfP+UYaKSZKutOdLiJD88DgFMal8D3fK/OZxii5RB73uoyApMQRu+e0SLo4useOKS9rLXH7txqYg85WIGBhpclkJRB5wJUvDWfH+a6DOg15I+U19SlMz0r7zCNCUW/U/uBDv6hDz9obPYMuvybkLSMh58UPwhHqOHWhjWF0R3F4sPcVrfGyRBUJWXdbu9DfZ6FLU2+ygjxyTG09rPl3nLpF+MLX6CAI9hHkbHzSGwAco1IEgpJ9KJAKYaH/IdKpUe9BcQpL2PUMs+Omq6/kPC4X289m8LFdIwJMpeYp5DilWKHd0Fb65iR1K0WZ42cy7bhqj15t9ohfx7G6oXQACiXhXSw64UZZcYE2vFGX4LFF02AUOpYEfQHXvDYReQCHi7o2xJ1Nl+Nxcjdj1ayEm/pSo0OghFwmjX6xgfsrftTlEB0I2jd78Hqlq886IIZ+J8+gEXcC3ASLW0yHoLeUPLeZUJeXvGDPrNejrn67vPq3djEXYVxbma9q4gA0bgE95i+9krXR6R/3rtWXJFaeWg6eKz4NhD8MWoIwl1xH9BpWK6RtAzROIii0/fC153dH20ZZb44f/0daO0mOl00wWbHg==
X-Forefront-Antispam-Report: 
	CIP:255.255.255.255;CTRY:;LANG:en;SCL:1;SRV:;IPV:NLI;SFV:NSPM;H:MRWP192MB3504.EURP192.PROD.OUTLOOK.COM;PTR:;CAT:NONE;SFS:(13230040)(376014)(52116014)(10070799003)(1800799024)(366016)(13003099007)(56012099003)(18002099003)(12006099003);DIR:OUT;SFP:1102;
X-MS-Exchange-AntiSpam-MessageData-ChunkCount: 2
X-MS-Exchange-AntiSpam-MessageData-0: 
 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
X-MS-Exchange-AntiSpam-MessageData-1: sjO4knuX8sV+Lw==
X-Exchange-RoutingPolicyChecked: 
	B5P4bHbBRtQLBmOV8BSmlQ/MgdJ/60YFU/20CxlbqyE7Cn2TlPKTtLt349kO581UBZw7UWDrxsyluRCiijH1KfNDGPCzfVQo2h+AztwHLjclmmfp9+Og58KTLftZc8D7gl5rZCkMWTcKfPSVeGaG9oIRUcOZ5htww9OLLGAPrgtSb3TVqMCIXQryQRCCT7HVUc6vSaakA9J8YsBnGM0EmKA2r9kzE/ZRYDwanCccazfR944t2Jx0CwoIUiaTHzq795OeTeHfcoaBSz3ghGYlyIQvyeQcyDja/TmHxT6CdPg4b2eLaI6TonvOo3i1+KAVQOm1HXStrvV/oD1h1aRkxQ==
X-MS-Exchange-AntiSpam-ExternalHop-MessageData-ChunkCount: 1
X-MS-Exchange-AntiSpam-ExternalHop-MessageData-0: 
	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
X-OriginatorOrg: witekio.com
X-MS-Exchange-CrossTenant-Network-Message-Id: 
 5eebd3ed-7a40-4150-cf99-08deb65cc082
X-MS-Exchange-CrossTenant-AuthSource: MRWP192MB3504.EURP192.PROD.OUTLOOK.COM
X-MS-Exchange-CrossTenant-AuthAs: Internal
X-MS-Exchange-CrossTenant-OriginalArrivalTime: 20 May 2026 10:44:21.7856
 (UTC)
X-MS-Exchange-CrossTenant-FromEntityHeader: Hosted
X-MS-Exchange-CrossTenant-Id: 317e086a-301a-49af-9ea4-48a1c458b903
X-MS-Exchange-CrossTenant-MailboxType: HOSTED
X-MS-Exchange-CrossTenant-UserPrincipalName: 
 fsY4ZvgV4Q96J5ORGvRqaRbygxqCPOlcXAavzMzcZ3liWHNltXYJ17uGS9l1id0Xg8qYaw+5tAfWXwyJdTDv3A==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DB9P192MB1564
X-cloud-security-sender: hsimeliere@witekio.com
X-cloud-security-recipient: openembedded-core@lists.openembedded.org
X-cloud-security-crypt: load encryption module
X-cloud-security-Mailarchiv: E-Mail archived for:
 hsimeliere.opensource@witekio.com
X-cloud-security-Mailarchivtype: outbound
X-cloud-security-Virusscan: CLEAN
X-cloud-security-disclaimer: This E-Mail was scanned by E-Mailservice on
 mx-gate14-hz12 with 4gL7T42yn9z1spmG
X-cloud-security-connect: 
 mail-francesouthazon11021100.outbound.protection.outlook.com[40.107.130.100],
 TLS=1, IP=40.107.130.100
X-cloud-security-Digest: e4800bc9bdc5ad86f184d1d7539840d6
X-cloud-security: scantime:2.337
List-Id: <openembedded-core.lists.openembedded.org>
X-Webhook-Received: from 45-33-107-173.ip.linodeusercontent.com
 [45.33.107.173] by
 aws-us-west-2-korg-lkml-1.web.codeaurora.org with HTTPS for
 <openembedded-core@lists.openembedded.org>; Wed, 20 May 2026 10:44:40 -0000
X-Groupsio-URL: 
 https://lists.openembedded.org/g/openembedded-core/message/237443