summaryrefslogtreecommitdiffstats
path: root/meta/classes/pkgconfig.bbclass
diff options
context:
space:
mode:
authorRoss Burton <ross.burton@intel.com>2019-12-08 20:35:55 +0200
committerRichard Purdie <richard.purdie@linuxfoundation.org>2019-12-16 23:11:10 +0000
commit1a09e2a3cf3efe67f2f01e1d1d8f65b5e337e3fb (patch)
treee80b9b3098921862a8fa57ff212c6c2165db9f45 /meta/classes/pkgconfig.bbclass
parent309153313092159d4103d4bfa396241461bc3d8d (diff)
downloadpoky-1a09e2a3cf3efe67f2f01e1d1d8f65b5e337e3fb.tar.gz
cve-check: rewrite look to fix false negatives
A previous optimisation was premature and resulted in false-negatives in the report. Rewrite the checking algorithm to first get the list of potential CVEs by vendor:product, then iterate through every matching CPE for that CVE to determine if the bounds match or not. By doing this in two stages we can know if we've checked every CPE, instead of accidentally breaking out of the scan too early. (From OE-Core rev: d61aff9e22704ad69df1f7ab0f8784f4e7cc0c69) (From OE-Core rev: 541dc24d974d3e22c45a650c34298eebc45121e8) Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Diffstat (limited to 'meta/classes/pkgconfig.bbclass')
0 files changed, 0 insertions, 0 deletions