cvert-kernel - generate CVE report for the Linux kernel - linux/meta-security.git - Mirror of git.yoctoproject.org/meta-security.git

diff options

author	Andrii Bordunov via Openembedded-core <openembedded-core@lists.openembedded.org>	2018-10-10 19:25:10 +0300
committer	Armin Kuster <akuster808@gmail.com>	2019-05-26 21:58:33 -0700
commit	0fc645a94696d7643ac2bbce9f9682376b845ec6 (patch)
tree	8d6d851f7f6592b448335f3f00151cb1438291e9 /scripts/cvert.py
parent	fbc9b4607569520c92baf1352041c813606e8524 (diff)
download	meta-security-0fc645a94696d7643ac2bbce9f9682376b845ec6.tar.gz

cvert-kernel - generate CVE report for the Linux kernel

NVD entries for the Linux kernel are almost always outdated. For example, https://nvd.nist.gov/vuln/detail/CVE-2018-1065 is shown as matched for "versions up to (including) 4.15.7", however the patch 57ebd808a97d has been back ported for 4.14. By default, it checks NVD Resource entries for the patch URLs and looks for the commits in the local GIT tree. Additionaly ("--resource") it checks other resources, that may have up-to-date CVE data. You can combine resources and decide which one you want to be based on. Signed-off-by: grygorii tertychnyi <gtertych@cisco.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>

Diffstat (limited to 'scripts/cvert.py')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: