cve-update-db-native: avoid incomplete updates - linux/poky.git

diff options

author	Marta Rybczynska <rybczynska@gmail.com>	2023-01-03 15:03:59 +0100
committer	Richard Purdie <richard.purdie@linuxfoundation.org>	2023-01-06 12:03:47 +0000
commit	f71fe538c8823f00d7fb2c3d4e78e5b18a41b98b (patch)
tree	541129767bc7058f1e2d0a8d50f8a53d9e90a679 /meta-poky
parent	22374efbac642332801462c76b7e48f41ebdcb8b (diff)
download	poky-f71fe538c8823f00d7fb2c3d4e78e5b18a41b98b.tar.gz

cve-update-db-native: avoid incomplete updates

The database update has been done on the original file. In case of network connection issues, temporary outage of the NVD server or a similar situation, the function could exit with incomplete data in the database. This patch solves the issue by performing the update on a copy of the database. It replaces the main one only if the whole update was successful. See https://bugzilla.yoctoproject.org/show_bug.cgi?id=14929 Reported-by: Alberto Pianon <alberto@pianon.eu> (From OE-Core rev: 8efe99214d8b005f0ecac690ce5ba17b31758f92) Signed-off-by: Marta Rybczynska <marta.rybczynska@linaro.org> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>

Diffstat (limited to 'meta-poky')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: