summaryrefslogtreecommitdiffstats
path: root/check-external
Commit message (Collapse)AuthorAgeFilesLines
* external-check: Handle vendor prefixed entriesSalvatore Bonaccorso2020-11-181-1/+1
| | | | | | | | | | | | | | | | | | When the source-$VENDOR.html lists contain a vendor prefixed CVE entry the external check update command will bail out: [...] <td>DEBIAN:CVE-2019-1010022</td> <td>DEBIAN:CVE-2019-1010023</td> <td>DEBIAN:CVE-2019-1010024</td> <td>DEBIAN:CVE-2019-1010025</td> DEBIAN.list contains garbage (see above), aborting Allow the expression to contain a VENDOR: prefix and strip it out as well. Link: https://lists.debian.org/debian-security-tracker/2020/11/msg00014.html Signed-off-by: Salvatore Bonaccorso <carnil@debian.org>
* Update hashbang for remaining python2 scriptsEmilio Pozuelo Monfort2020-08-311-1/+1
| | | | | | | | These are all currently unused, so it's a bit hard to test them when porting them to Python 3. So rather than doing that, let's explicitly mark them as being Python 2. Before porting them we may want to check if they are still useful or if they should be removed instead.
* Update python exception syntax for Python 3.6 compatibilityBrian May2018-07-131-1/+1
|
* Add previously uncommited file used as signature for the external-checkSalvatore Bonaccorso2017-12-271-0/+4
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@58955 e39458fd-73e7-0310-bf30-c45bca0a0e42
* unknown-packages: Switch to https URL for sources.debian.orgSalvatore Bonaccorso2017-12-011-1/+1
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@58190 e39458fd-73e7-0310-bf30-c45bca0a0e42
* unknown-packages: Use sources.debian.org rather than sources.debian.netSalvatore Bonaccorso2017-12-011-1/+1
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@58189 e39458fd-73e7-0310-bf30-c45bca0a0e42
* check-external: match full words when looking for a CVE id in CVE/listRaphael Geissert2016-09-261-1/+1
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@44912 e39458fd-73e7-0310-bf30-c45bca0a0e42
* Remove duplicates from the mitre-based listsRaphael Geissert2016-09-141-1/+1
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@44582 e39458fd-73e7-0310-bf30-c45bca0a0e42
* Add another bugzilla-based sourceRaphael Geissert2016-09-141-1/+4
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@44581 e39458fd-73e7-0310-bf30-c45bca0a0e42
* bugzilla's results may contain more than one CVE per lineRaphael Geissert2016-09-141-1/+1
| | | | | | | | Use perl for easier looping and to have more readable code git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@44580 e39458fd-73e7-0310-bf30-c45bca0a0e42
* unknown-packages.py: SSL certs. Fix from #787410Luciano Bello2016-05-061-0/+4
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@41474 e39458fd-73e7-0310-bf30-c45bca0a0e42
* Add check for Red Hat source using Red Hat bugzillaSalvatore Bonaccorso2016-04-241-0/+6
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@41113 e39458fd-73e7-0310-bf30-c45bca0a0e42
* One Red Hat external check discontinuedSalvatore Bonaccorso2016-04-241-9/+11
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@41112 e39458fd-73e7-0310-bf30-c45bca0a0e42
* Another potential data source: sambaPaul Wise2016-04-241-0/+6
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@41107 e39458fd-73e7-0310-bf30-c45bca0a0e42
* Add a security issue source for WebKitGTK+Paul Wise2016-03-311-0/+6
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@40674 e39458fd-73e7-0310-bf30-c45bca0a0e42
* Add a CVE source for mercurialPaul Wise2016-03-311-0/+5
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@40668 e39458fd-73e7-0310-bf30-c45bca0a0e42
* https for links to the GNU license list.Paul Wise2016-03-012-2/+2
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@40100 e39458fd-73e7-0310-bf30-c45bca0a0e42
* Sketch out data sources for a possible expansion of the check-external tool.Paul Wise2016-01-091-0/+108
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@38797 e39458fd-73e7-0310-bf30-c45bca0a0e42
* Workaround changes done on ↵Salvatore Bonaccorso2015-10-011-1/+1
| | | | | | | | | https://www.redhat.com/security/data/cve/cve-$year.html Now not anymore a file which we can download only if it has newer timestamp, so download on every cronjob run. git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@36935 e39458fd-73e7-0310-bf30-c45bca0a0e42
* don't do a svn up from the check-external cronjobRaphael Geissert2015-01-181-2/+0
| | | | | | | | Makefile's updatelist does it for us git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@31501 e39458fd-73e7-0310-bf30-c45bca0a0e42
* Revert the revert of r31403Raphael Geissert2015-01-181-0/+1
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@31485 e39458fd-73e7-0310-bf30-c45bca0a0e42
* unknown-packages.py: bug fixingLuciano Bello2015-01-171-2/+2
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@31456 e39458fd-73e7-0310-bf30-c45bca0a0e42
* unknown-packages.py: removing old packagesLuciano Bello2015-01-171-12/+14
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@31450 e39458fd-73e7-0310-bf30-c45bca0a0e42
* unknown-packages: double check and DB updateLuciano Bello2015-01-161-5/+29
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@31413 e39458fd-73e7-0310-bf30-c45bca0a0e42
* cronjob.sh: and rolling back :SLuciano Bello2015-01-161-1/+0
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@31404 e39458fd-73e7-0310-bf30-c45bca0a0e42
* cronjob.sh: adding certificatesLuciano Bello2015-01-161-0/+1
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@31403 e39458fd-73e7-0310-bf30-c45bca0a0e42
* unknown-packages uses local databaseLuciano Bello2015-01-161-6/+27
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@31396 e39458fd-73e7-0310-bf30-c45bca0a0e42
* unknown-packages: kinda cache to avoid delaysLuciano Bello2015-01-161-2/+3
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@31392 e39458fd-73e7-0310-bf30-c45bca0a0e42
* unknown-packages-pts.py: check the unknown list of packagesLuciano Bello2015-01-161-0/+22
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@31391 e39458fd-73e7-0310-bf30-c45bca0a0e42
* Report CVE ids that are missing from our listRaphael Geissert2014-03-241-0/+4
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@26226 e39458fd-73e7-0310-bf30-c45bca0a0e42
* Prepare the external check scripts for the new formatRaphael Geissert2013-12-051-3/+3
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@24591 e39458fd-73e7-0310-bf30-c45bca0a0e42
* Add script that is meant to be executed by a cronjobRaphael Geissert2012-04-151-0/+22
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@18956 e39458fd-73e7-0310-bf30-c45bca0a0e42
* Abort if there's garbage in the cve listsRaphael Geissert2012-04-151-0/+9
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@18951 e39458fd-73e7-0310-bf30-c45bca0a0e42
* Correctly handle CVE ids in descriptionsRaphael Geissert2012-02-251-1/+1
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@18540 e39458fd-73e7-0310-bf30-c45bca0a0e42
* Fix a few RESERVED false positivesRaphael Geissert2010-12-141-3/+18
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@15709 e39458fd-73e7-0310-bf30-c45bca0a0e42
* lookup.sh: also report TODOs and RESERVED issuesRaphael Geissert2010-12-141-6/+19
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@15708 e39458fd-73e7-0310-bf30-c45bca0a0e42
* Fix some false positivesRaphael Geissert2010-12-141-1/+1
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@15706 e39458fd-73e7-0310-bf30-c45bca0a0e42
* Add support for other CVE sourcesRaphael Geissert2010-12-142-8/+46
| | | | | | | Example: ./lookup -s UBUNTU git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@15704 e39458fd-73e7-0310-bf30-c45bca0a0e42
* Add some scripts to check our CVE list against Red Hat'sRaphael Geissert2010-12-142-0/+100
Try with: cd check-external && ./update.sh && ./lookup.sh CVE-2010 git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@15701 e39458fd-73e7-0310-bf30-c45bca0a0e42

© 2014-2024 Faster IT GmbH | imprint | privacy policy