summaryrefslogtreecommitdiffstats
path: root/bin/report-vuln
Commit message (Collapse)AuthorAgeFilesLines
* Wrap long CVE descrptions for the vulnerability report templateSalvatore Bonaccorso2019-03-221-1/+4
| | | | | | | | | | | | MITRE changed the layout of the html pages for the CVE entries resulting in long lines for the CVE descpritons not wrapped anymore directly already in the fetched HTML. Switch to use texwrap module to wrap the text in the description lines and to be prefixed with a marker if the description is too long to be hold in one line. Signed-off-by: Salvatore Bonaccorso <carnil@debian.org>
* Replace final : with a full stopSalvatore Bonaccorso2018-04-071-1/+1
|
* bin/report-vuln: Make the title a little cleaner.Chris Lamb2018-03-261-1/+1
|
* report-vuln: Stop X-Debbugs-CC'ing secure-testing-team@lists.alioth.debian.orgSalvatore Bonaccorso2018-01-291-1/+1
|
* report-vuln: Adjust example usage path to report-vuln scirptSalvatore Bonaccorso2017-12-291-1/+1
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@59025 e39458fd-73e7-0310-bf30-c45bca0a0e42
* report-vuln: use Python3 compatible exception syntaxGuido Günther2017-12-011-1/+1
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@58184 e39458fd-73e7-0310-bf30-c45bca0a0e42
* report-vuln: don't report version as None when not setGuido Günther2017-12-011-5/+5
| | | | | | This also brings back the X-Debbug-CC entries git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@58183 e39458fd-73e7-0310-bf30-c45bca0a0e42
* report-vuln: allow to invoke mailerGuido Günther2017-12-011-41/+54
| | | | | | | | | | This allows to invoke the mailer directly like bin/report-vuln -M <pkg> <cve>... the default behaviour is unchanged. git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@58182 e39458fd-73e7-0310-bf30-c45bca0a0e42
* report-vuln: Support generation of mail headersGuido Günther2017-11-291-7/+15
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@58125 e39458fd-73e7-0310-bf30-c45bca0a0e42
* report-vuln: don't fail if description_from_list return NoneGuido Günther2017-11-291-1/+1
| | | | | | | | | | | | | | | | | | | If no description was found None is returned. This fixes Traceback (most recent call last): File "bin/report-vuln", line 237, in <module> main() File "bin/report-vuln", line 234, in main gen_text(pkg, cve, affected=args.affected, blanks=args.blanks, severity=args.severity, cc=args.cc, cclist=args.cclist, src=args.src) File "bin/report-vuln", line 156, in gen_text print get_cve(cve) File "bin/report-vuln", line 114, in get_cve return ret + '\n' TypeError: unsupported operand type(s) for +: 'NoneType' and 'str' in case of a yet unknown CVE. git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@58119 e39458fd-73e7-0310-bf30-c45bca0a0e42
* report-vuln: Use spaces instead of tabsGuido Günther2017-11-291-146/+146
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@58118 e39458fd-73e7-0310-bf30-c45bca0a0e42
* report-vuln: Cope with changed output around RESERVED word on mitre.orgSalvatore Bonaccorso2017-04-111-1/+1
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@50559 e39458fd-73e7-0310-bf30-c45bca0a0e42
* report-vuln: support reporting against source packageSalvatore Bonaccorso2017-04-011-3/+8
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@50252 e39458fd-73e7-0310-bf30-c45bca0a0e42
* report-vuln: Use consistent style for arguments of defined functionsSalvatore Bonaccorso2017-03-311-2/+2
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@50235 e39458fd-73e7-0310-bf30-c45bca0a0e42
* report-vuln: Clarify help text for CVE argumentsSalvatore Bonaccorso2017-03-311-1/+1
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@50234 e39458fd-73e7-0310-bf30-c45bca0a0e42
* report-vuln: FILLINSEVERITY not used anymoreSalvatore Bonaccorso2017-03-311-1/+1
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@50233 e39458fd-73e7-0310-bf30-c45bca0a0e42
* report-vuln: Fix typo in help text for --cc/--no-cc argumentSalvatore Bonaccorso2017-03-311-1/+1
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@50232 e39458fd-73e7-0310-bf30-c45bca0a0e42
* report-vuln: Adding X-Debbugs-CC should be the defaultSalvatore Bonaccorso2017-03-311-1/+1
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@50231 e39458fd-73e7-0310-bf30-c45bca0a0e42
* Import improvements to report-vuln done by Antoine BeaupréSalvatore Bonaccorso2017-03-311-25/+51
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@50230 e39458fd-73e7-0310-bf30-c45bca0a0e42
* Summary: report-vuln: add an example of a simple oneliner with bash as wellAntoine Beaupré2016-10-291-0/+6
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@45746 e39458fd-73e7-0310-bf30-c45bca0a0e42
* report-vuln: point to the mitre website over httpsRaphael Geissert2015-08-221-2/+2
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@36263 e39458fd-73e7-0310-bf30-c45bca0a0e42
* Add empty line between salutation and textSalvatore Bonaccorso2014-12-181-0/+1
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@30811 e39458fd-73e7-0310-bf30-c45bca0a0e42
* Prefer security-tracker page in listingSalvatore Bonaccorso2014-12-181-2/+2
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@30810 e39458fd-73e7-0310-bf30-c45bca0a0e42
* Allow numeric characters in package nameSalvatore Bonaccorso2014-08-081-1/+1
| | | | | | See https://www.debian.org/doc/debian-policy/ch-controlfields.html#s-f-Source git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@28141 e39458fd-73e7-0310-bf30-c45bca0a0e42
* report-vuln: use https urls for the security-tracker referencesSalvatore Bonaccorso2014-03-261-2/+2
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@26263 e39458fd-73e7-0310-bf30-c45bca0a0e42
* prepare for new CVE formatThijs Kinkhorst2013-12-051-1/+1
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@24590 e39458fd-73e7-0310-bf30-c45bca0a0e42
* Ignore unimportant issuesRaphael Geissert2012-08-201-1/+1
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@19986 e39458fd-73e7-0310-bf30-c45bca0a0e42
* Add --no-blanks option and default to not specifying a VersionRaphael Geissert2012-08-201-9/+24
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@19985 e39458fd-73e7-0310-bf30-c45bca0a0e42
* Reword template now that issues without CVE ids may be reportedRaphael Geissert2012-08-201-5/+4
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@19984 e39458fd-73e7-0310-bf30-c45bca0a0e42
* Allow report-vuln to report issues without CVE idsRaphael Geissert2012-08-201-5/+37
| | | | | | | | | | | | | | USAGE: bin/report-vuln src-pkg CVE-2012-XXXX Specify as many CVE-less entries as the number of issues to report. E.g. to report two issues without CVE id against foo: bin/report-vuln foo CVE-2012-XXXX CVE-2012-XXXX NOTE: Make sure you add a description to the CVE/list entries! git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@19983 e39458fd-73e7-0310-bf30-c45bca0a0e42
* Use the temporary description if the id is still RESERVEDRaphael Geissert2012-08-201-0/+24
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@19982 e39458fd-73e7-0310-bf30-c45bca0a0e42
* NFUsGiuseppe Iuculano2009-10-211-1/+1
| | | | | | | s/security-tracker.debian.net/security-tracker.debian.org git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@13058 e39458fd-73e7-0310-bf30-c45bca0a0e42
* remove superfluous newlineNico Golde2008-06-111-1/+0
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@9038 e39458fd-73e7-0310-bf30-c45bca0a0e42
* use urllib instead of httplib as it takes care of http_proxy by itselfNico Golde2008-06-071-18/+10
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@9011 e39458fd-73e7-0310-bf30-c45bca0a0e42
* fix http replacement, todo: seperate proxy processing from http functionNico Golde2008-06-061-1/+2
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@9005 e39458fd-73e7-0310-bf30-c45bca0a0e42
* fix proxy support if http_proxy is not setNico Golde2008-06-061-1/+4
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@9002 e39458fd-73e7-0310-bf30-c45bca0a0e42
* NFUsNico Golde2008-06-061-8/+21
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@8997 e39458fd-73e7-0310-bf30-c45bca0a0e42
* adding report-vuln scriptNico Golde2008-03-281-0/+121
git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@8437 e39458fd-73e7-0310-bf30-c45bca0a0e42

© 2014-2024 Faster IT GmbH | imprint | privacy policy