New comment by paper42 on void-packages repository

https://github.com/void-linux/void-packages/pull/37180#issuecomment-1135826944

Comment:
> @Johnnynator This release fixes CVE-2022-1292 so perhaps it's worth updating, despite the trivial test failure.

Is that CVE relevant for us?

https://www.openssl.org/news/secadv/20220503.txt

> The c_rehash script does not properly sanitise shell metacharacters to prevent command injection. This script is distributed by some operating systems in a manner where it is automatically executed. On such operating systems, an attacker could execute arbitrary commands with the privileges of the script.