cve-update-db-native: fix DB file version for '-'

fix logic for CVE DB update so that when the CPE version is '-', it keeps the version as '-' in the DB file too and leave other operation as blank. (From OE-Core rev: 0ec35b00d65c70485eb1efe602d9fca53e926811) Signed-off-by: Lee Chee Yang <chee.yang.lee@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
author: Lee Chee Yang <chee.yang.lee@intel.com> 2020-04-02 19:48:55 +0800
committer: Richard Purdie <richard.purdie@linuxfoundation.org> 2020-04-05 11:46:37 +0100
commit: cae5e155a8b597930d600e1c24a5f73e69489be6 (patch)
tree: 6f32731ab44ee2efcd42e4f8e268c37caded53d6
parent: 4c9cfe61a58eccad7b18d8a58583de5057d3f60d (diff)
download: poky-cae5e155a8b597930d600e1c24a5f73e69489be6.tar.gz
1 files changed, 3 insertions, 0 deletions
diff --git a/meta/recipes-core/meta/cve-update-db-native.bb b/meta/recipes-core/meta/cve-update-db-native.bb
index 497d957d65..f27ade40db 100644
--- a/meta/recipes-core/meta/cve-update-db-native.bb
+++ b/meta/recipes-core/meta/cve-update-db-native.bb
@@ -138,6 +138,9 @@ def parse_node_and_insert(c, node, cveId):
            if version != '*' and version != '-':
                # Version is defined, this is a '=' match
                yield [cveId, vendor, product, version, '=', '', '']
+            elif version == '-':
+                # no version information is available
+                yield [cveId, vendor, product, version, '', '', '']
            else:
                # Parse start version, end version and operators
                op_start = ''
author	Lee Chee Yang <chee.yang.lee@intel.com>	2020-04-02 19:48:55 +0800
committer	Richard Purdie <richard.purdie@linuxfoundation.org>	2020-04-05 11:46:37 +0100
commit	cae5e155a8b597930d600e1c24a5f73e69489be6 (patch)
tree	6f32731ab44ee2efcd42e4f8e268c37caded53d6
parent	4c9cfe61a58eccad7b18d8a58583de5057d3f60d (diff)
download	poky-cae5e155a8b597930d600e1c24a5f73e69489be6.tar.gz