]> code.ossystems Code Review - openembedded-core.git/commit
Code Review / openembedded-core.git / commit
? search:
summary | shortlog | log | commit | commitdiff | review | tree
(parent: 5ac98c7) | patch
cve-check: CPE version '-' as all version
authorLee Chee Yang <chee.yang.lee@intel.com>
Tue, 31 Mar 2020 07:26:03 +0000 (15:26 +0800)
committerArmin Kuster <akuster808@gmail.com>
Mon, 20 Apr 2020 00:15:20 +0000 (17:15 -0700)
commit1e8e188514584f9f972c0eb733c10a61853ec3d0
tree88cf98a60a2e72c5d13d9b1859f5a26f2f50f2b6tree | snapshot
parent5ac98c776f9b77804a0ee812f47f3ecf593e432fcommit | diff
cve-check: CPE version '-' as all version

CPE version could be '-' to mean no version info.
Current cve_check treat it as not valid and does not report these
CVE but some of these could be a valid vulnerabilities.

Since non-valid CVE can be whitelisted, so treat '-' as all version
and report all these CVE to capture possible vulnerabilities.

Non-valid CVE to be whitelisted separately.

[YOCTO #13617]

Signed-off-by: Lee Chee Yang <chee.yang.lee@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
(cherry picked from commit c69ee3594079589d27c10db32bc288566ebde9ef)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
meta/classes/cve-check.bbclass diff | blob | history
meta/recipes-core/meta/cve-update-db-native.bb diff | blob | history
Mirror of the official openembedded-core repository