diff options
author | Pierre Le Magourou <pierre.lemagourou@softbankrobotics.com> | 2019-07-05 11:40:37 +0200 |
---|---|---|
committer | Richard Purdie <richard.purdie@linuxfoundation.org> | 2019-07-09 23:30:44 +0100 |
commit | e7ee189c6a12adde665bbfc60292772d4b791c23 (patch) | |
tree | f18a768a3386acec7dc93857496913c9336c5564 /meta/lib | |
parent | 8f81d2e863283557e360a0cb4cdcb70a94ce0a8c (diff) | |
download | poky-e7ee189c6a12adde665bbfc60292772d4b791c23.tar.gz |
cve-update-db: Use NVD CPE data to populate PRODUCTS table
Instead of using expanded list of affected versions that is not
reliable, use the 'cpe_match' node in the 'configurations' json node.
For cve-check to correctly match affected CVE, the sqlite database need to
contain operator_start, operator_end and the corresponding versions fields.
(From OE-Core rev: f7676e9a38d595564922e5f59acbc69c2109a78f)
Signed-off-by: Pierre Le Magourou <pierre.lemagourou@softbankrobotics.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Diffstat (limited to 'meta/lib')
0 files changed, 0 insertions, 0 deletions