]> code.ossystems Code Review - openembedded-core.git/commit
Code Review / openembedded-core.git / commit
? search:
summary | shortlog | log | commit | commitdiff | review | tree
(parent: 35bd7de) | patch
cve-update-db: New recipe to update CVE database
authorPierre Le Magourou <pierre.lemagourou@softbankrobotics.com>
Wed, 19 Jun 2019 13:59:37 +0000 (15:59 +0200)
committerRichard Purdie <richard.purdie@linuxfoundation.org>
Wed, 19 Jun 2019 22:08:59 +0000 (23:08 +0100)
commit546d14135c50c6a571dfbf3baf6e9b22ce3d58e0
treedc4813b6c7aa41b42f9654d10ca9de98f2c53f0atree | snapshot
parent35bd7de678223f48443bddbeed4f4640534805a4commit | diff
cve-update-db: New recipe to update CVE database

cve-check-tool-native do_populate_cve_db task was using deprecated NVD
xml data feeds, cve-update-db uses NVD json data feeds.

Sqlite database schema was updated to take into account CVSSv3 CVE
scores and operator in affected product versions.
A new META table was added to store the last modification date of the
NVD json data feeds.

Signed-off-by: Pierre Le Magourou <pierre.lemagourou@softbankrobotics.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
meta/conf/distro/include/maintainers.inc diff | blob | history
meta/recipes-core/meta/cve-update-db.bb [new file with mode: 0644] blob
Mirror of the official openembedded-core repository