cve-update-nvd2-native: new CVE database fetcher - linux/poky.git

diff options

author	Marta Rybczynska <rybczynska@gmail.com>	2023-03-29 12:02:56 +0200
committer	Steve Sakoman <steve@sakoman.com>	2023-06-21 04:00:58 -1000
commit	075d712b289d1749c3199bc2604164b285371629 (patch)
tree	768700d455f003f707102968fc0bcf9fcff93ac9 /scripts/lib/devtool/runqemu.py
parent	1a63c9703f76c30c6c0c2b15ccefd3730bc707be (diff)
download	poky-075d712b289d1749c3199bc2604164b285371629.tar.gz

cve-update-nvd2-native: new CVE database fetcher

Add new fetcher for the NVD database using the 2.0 API [1]. The implementation changes as little as possible, keeping the current database format (but using a different database file for the transition period), with a notable exception of not using the META table. Minor changes that could be visible: - the database starts in 1999 instead of 2002 - the complete fetch is longer (30 minutes typically) [1] https://nvd.nist.gov/developers/vulnerabilities (From OE-Core rev: b8ae26aabe825c1bc8d84fd7e0ee197695f1dee7) Signed-off-by: Marta Rybczynska <marta.rybczynska@syslinbit.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> (cherry picked from commit fb62c4c3dbca4e58f7ce6cf29d4b630a06411a97) Signed-off-by: Steve Sakoman <steve@sakoman.com>

Diffstat (limited to 'scripts/lib/devtool/runqemu.py')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: