cve-update-nvd2-native: new CVE database fetcher - linux/poky.git

diff options

author	Marta Rybczynska <rybczynska@gmail.com>	2023-03-29 12:02:56 +0200
committer	Steve Sakoman <steve@sakoman.com>	2023-06-27 05:24:36 -1000
commit	af419f2429cfa01071645af0fb1717da6644ddbe (patch)
tree	2c5e0cc65f8c0f3b27a7d14edd95601c44c25179 /scripts/lib/devtool/build.py
parent	04003b36bf9f3b5624a6029970a383a8e8439ce2 (diff)
download	poky-af419f2429cfa01071645af0fb1717da6644ddbe.tar.gz

cve-update-nvd2-native: new CVE database fetcher

Add new fetcher for the NVD database using the 2.0 API [1]. The implementation changes as little as possible, keeping the current database format (but using a different database file for the transition period), with a notable exception of not using the META table. Minor changes that could be visible: - the database starts in 1999 instead of 2002 - the complete fetch is longer (30 minutes typically) [1] https://nvd.nist.gov/developers/vulnerabilities (From OE-Core rev: 191e2c6d7009999f049a0cf8460259f8f91a829d) Signed-off-by: Marta Rybczynska <marta.rybczynska@syslinbit.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> (cherry picked from commit fb62c4c3dbca4e58f7ce6cf29d4b630a06411a97) Signed-off-by: Steve Sakoman <steve@sakoman.com>

Diffstat (limited to 'scripts/lib/devtool/build.py')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: