cve-update-db-native: avoid incomplete updates - linux/poky.git

diff options

author	Marta Rybczynska <rybczynska@gmail.com>	2023-01-03 15:03:59 +0100
committer	Richard Purdie <richard.purdie@linuxfoundation.org>	2023-02-13 07:44:09 +0000
commit	a4eed2134159929d699520a7445d6f70a13c2578 (patch)
tree	c4d5ce21f783853e89814b9989db8a8fb4cf73a5 /documentation/_templates
parent	4d69f690821fa2256680c078d2b477e541f6a836 (diff)
download	poky-a4eed2134159929d699520a7445d6f70a13c2578.tar.gz

cve-update-db-native: avoid incomplete updates

The database update has been done on the original file. In case of network connection issues, temporary outage of the NVD server or a similar situation, the function could exit with incomplete data in the database. This patch solves the issue by performing the update on a copy of the database. It replaces the main one only if the whole update was successful. See https://bugzilla.yoctoproject.org/show_bug.cgi?id=14929 Reported-by: Alberto Pianon <alberto@pianon.eu> (From OE-Core rev: 6a219c50ee12b7fb584e2db3e4dde171903acfb7) Signed-off-by: Marta Rybczynska <marta.rybczynska@linaro.org> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit 8efe99214d8b005f0ecac690ce5ba17b31758f92) Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>

Diffstat (limited to 'documentation/_templates')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: