cve-update-db-native: consider version suffix when update CVE db - linux/poky.git

diff options

author	Lee Chee Yang <chee.yang.lee@intel.com>	2021-03-04 22:44:06 +0800
committer	Richard Purdie <richard.purdie@linuxfoundation.org>	2021-04-19 12:55:20 +0100
commit	748958855900cf663a2656d2f27a7ab6edfc63eb (patch)
tree	10d6bf99c0c9fbd4a485e4062fd1076cd8107011 /meta/lib/oeqa/selftest/cases/cve_check.py
parent	ee15a42fd0ad0f0cc021147bbe3084d040bbe6b0 (diff)
download	poky-748958855900cf663a2656d2f27a7ab6edfc63eb.tar.gz

cve-update-db-native: consider version suffix when update CVE db

some record from NVD can merge or split suffix from version, for example: CVE-2017-15906 "cpe23Uri" : "cpe:2.3:a:openbsd:openssh:5.0:p1:*:*:*:*:*:*" "cpe23Uri" : "cpe:2.3:a:openbsd:openssh:4.7p1:*:*:*:*:*:*:*" in such case include the suffix into version when update local CVE db. (From OE-Core rev: ecb41c87695c483959e2d96fcb6ca7cd92fd7315) Signed-off-by: Lee Chee Yang <chee.yang.lee@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> (cherry picked from commit 13cc68197f81bb7c76fa1abecc5dd720b8bdb8d5) Signed-off-by: Anuj Mittal <anuj.mittal@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>

Diffstat (limited to 'meta/lib/oeqa/selftest/cases/cve_check.py')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: