From: Lee Chee Yang <chee.yang.lee@intel.com>
Date: Thu, 2 Apr 2020 11:48:55 +0000 (+0800)
Subject: cve-update-db-native: fix DB file version for '-'
X-Git-Tag: 2020-04-dunfell~31
X-Git-Url: https://code.ossystems.io/gitweb?a=commitdiff_plain;h=0ec35b00d65c70485eb1efe602d9fca53e926811;p=openembedded-core.git

cve-update-db-native: fix DB file version for '-'

fix logic for CVE DB update so that when the CPE version is '-',
it keeps the version as '-' in the DB file too and leave other
operation as blank.

Signed-off-by: Lee Chee Yang <chee.yang.lee@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
---

diff --git a/meta/recipes-core/meta/cve-update-db-native.bb b/meta/recipes-core/meta/cve-update-db-native.bb
index 497d957d65..f27ade40db 100644
--- a/meta/recipes-core/meta/cve-update-db-native.bb
+++ b/meta/recipes-core/meta/cve-update-db-native.bb
@@ -138,6 +138,9 @@ def parse_node_and_insert(c, node, cveId):
             if version != '*' and version != '-':
                 # Version is defined, this is a '=' match
                 yield [cveId, vendor, product, version, '=', '', '']
+            elif version == '-':
+                # no version information is available
+                yield [cveId, vendor, product, version, '', '', '']
             else:
                 # Parse start version, end version and operators
                 op_start = ''