* SECURITY UPDATE: directory traversal in cpio extraction - debian/patches/CVE-2023-39810.patch: add FEATURE_PATH_TRAVERSAL_PROTECTION config option, call strip_unsafe_prefix() in data_extract_all.c to prevent path traversal via ../ in archive filenames. Covers cpio, ar, rpm. - Enable CONFIG_FEATURE_PATH_TRAVERSAL_PROTECTION=y in all build configs. - debian/patches/CVE-2023-39810.patch: replace `echo -e` with `printf` in the new cpio path-traversal testcase so it is portable to dash (the Ubuntu /bin/sh). - debian/testsuite-linux.diff: skip the pre-existing "cpio uses by default uid/gid" test, which is fragile in the pbuilder chroot (id -u returns 0 but source files retain uid=1000 from the build worker, causing a spurious mismatch). - debian/patches/CVE-2023-39810.patch: include the "1 blocks" summary line that busybox cpio -vi emits (to stderr, merged via 2>&1) at end-of-archive in the expected output of the new path-traversal testcase; the functional check (file not written, exit 0) already passed but the string-match failed because 1.30.1 always prints "N blocks", matching the pattern used by other cpio tests in testsuite/cpio.tests. - debian/testsuite-linux.diff: skip the pre-existing hostname-d-works test when the pbuilder chroot cannot resolve its own hostname via DNS (no /etc/hosts entry for the build host). - CVE-2023-39810