cve-update-db: Use NVD CPE data to populate PRODUCTS table - linux/poky.git

diff options

author	Pierre Le Magourou <pierre.lemagourou@softbankrobotics.com>	2019-11-06 17:37:35 +0200
committer	Richard Purdie <richard.purdie@linuxfoundation.org>	2019-11-07 19:47:26 +0000
commit	1fd5cfa59d191bd11cc57dffb6c6e381d6abac60 (patch)
tree	58cb95cd33f459d9c2bcdbb858a6cd6b7eb5f653 /meta/classes
parent	723bd744df2e9d87c6f115a98a0fbc3ea515c3ec (diff)
download	poky-1fd5cfa59d191bd11cc57dffb6c6e381d6abac60.tar.gz

cve-update-db: Use NVD CPE data to populate PRODUCTS table

Instead of using expanded list of affected versions that is not reliable, use the 'cpe_match' node in the 'configurations' json node. For cve-check to correctly match affected CVE, the sqlite database need to contain operator_start, operator_end and the corresponding versions fields. (From OE-Core rev: f7676e9a38d595564922e5f59acbc69c2109a78f) (From OE-Core rev: 6977d15fbc3b78958768b21f6c501e7d63be9499) Signed-off-by: Pierre Le Magourou <pierre.lemagourou@softbankrobotics.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>

Diffstat (limited to 'meta/classes')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: