cve-update-nvd2-native: new CVE database fetcher - linux/poky.git

diff options

author	Marta Rybczynska <rybczynska@gmail.com>	2023-03-29 12:02:56 +0200
committer	Richard Purdie <richard.purdie@linuxfoundation.org>	2023-04-01 11:36:26 +0100
commit	15dc92a4b19baedbb9bfa95fbe2c8b6a7c9987c8 (patch)
tree	e0724c7e005cb996ffc793a275ed8538ae7bd117 /meta/classes-recipe/cargo_common.bbclass
parent	d59756912cd450b0af3d8893b822c66dafe42544 (diff)
download	poky-15dc92a4b19baedbb9bfa95fbe2c8b6a7c9987c8.tar.gz

cve-update-nvd2-native: new CVE database fetcher

Add new fetcher for the NVD database using the 2.0 API [1]. The implementation changes as little as possible, keeping the current database format (but using a different database file for the transition period), with a notable exception of not using the META table. Minor changes that could be visible: - the database starts in 1999 instead of 2002 - the complete fetch is longer (30 minutes typically) [1] https://nvd.nist.gov/developers/vulnerabilities (From OE-Core rev: fb62c4c3dbca4e58f7ce6cf29d4b630a06411a97) Signed-off-by: Marta Rybczynska <marta.rybczynska@syslinbit.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>

Diffstat (limited to 'meta/classes-recipe/cargo_common.bbclass')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: