CVE-2019-5747 was fixed in 1.29.3-r10 commit cf43a775
(main/busybox: security fixes (CVE-2018-20679, CVE-2019-5747))

The backported patch was later removed in commit 397f0cd9
(main/busybox: upgrade to 1.30.0) and added back again in 1.30.1-r2,
commit d310e6a3 (main/busybox: backport fix for CVE-2019-5747).

Adjust secfixes comment accordingly.

ref #11914