Mirror of Debian Security Tracker - Mirror of the salsa git repository for security-tracker-team/security-tracker

	Commit message (Collapse)	Author	Age	Files	Lines
*	Merge branch 'bam/security-tracker-fix_cmp'	Salvatore Bonaccorso	2020-01-02	1	-1/+2
\|\ \| \| \| \| \| \|	See merge request security-tracker-team/security-tracker!40
\| *	Fix list sort	Brian May	2019-06-17	1	-1/+2
\| \|
* \|	Fix inconsistent leading ident before if statement	Brian May	2019-12-26	1	-2/+2
\| \|
* \|	Reimplement (incompletely) simplistic NVD parser to handle JSON feed	Salvatore Bonaccorso	2019-10-20	1	-68/+59
\| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \| \|	The reimplementation is focused on only the functionality actually strictly required by the security-tracker. This includes fetching the CVE id and corresponding description. All of specific imapct metrics (severity, range, loss attributes) are not implemented. Those will require a database schema version bump and reimplementation as well for the security_db. Closes: #942670 Signed-off-by: Salvatore Bonaccorso <carnil@debian.org>
* \|	nvd.py: Add missing note that CVE description is returned	Salvatore Bonaccorso	2019-10-20	1	-0/+1
\| \|
* \|	Drop mips from bullseye architectures	Salvatore Bonaccorso	2019-08-21	1	-1/+1
\| \|
* \|	Another place where mips needs to be dropped	Raphaël Hertzog	2019-08-21	1	-1/+1
\| \|
* \|	security_db: Update mappings after buster stable release	Salvatore Bonaccorso	2019-07-06	1	-16/+16
\| \|
* \|	dist_config: Add support for bullseye release and initial list of supported ↵	Salvatore Bonaccorso	2019-07-06	1	-0/+5
\| \| \| \| \| \| \| \| \| \| \| \| \| \|	architectures Add list of currently suported architectures inherited from buster supported architectures.
* \|	debian_support: Add bullseye to supported releases	Salvatore Bonaccorso	2019-07-06	1	-1/+1
\|/
*	security_db: Make source code comment independent of codename for distribution	Salvatore Bonaccorso	2019-04-28	1	-2/+2
\|
*	Replace file() with open() for Python 3 compatability	Brian May	2019-03-04	6	-12/+12
\|
*	Replace `abc` with repr(abc)	Brian May	2019-02-18	2	-7/+7
\|
*	lib/python/bugs.py: Use explicit list comprehension; the "lambda (x,)" ↵	Chris Lamb	2019-02-11	1	-2/+2
\| \| \| \|	syntax is not actually valid in Python 3.
*	lib/python/debian_support.py: Use repr(..) over backticks; they are removed ↵	Chris Lamb	2019-02-11	1	-3/+3
\| \| \| \|	in Python 3.x
*	CVEExtendFile: treat TEMP-* entries as unique	Emilio Pozuelo Monfort	2018-12-04	1	-0/+9
\| \| \| \| \| \|	Otherwise, they will get rehashed into a different temp name, preventing one to add notes to TEMP entries in an extend file.
*	Merge branch 'bam/security-tracker-use_pythons_namedtuple'	Salvatore Bonaccorso	2018-11-11	4	-96/+3
\|\
\| *	Use the namedtuple class supplied with Python	Brian May	2018-08-20	4	-96/+3
\| \|
* \|	Replace "x.has_key(y)" with "y in x" syntax	Brian May	2018-08-20	7	-16/+16
\|/
*	Fix print statements for Python 3.6 compatibility	Brian May	2018-08-06	8	-72/+77
\|
*	Replace <> with != for Python 3.6 compatibility	Brian May	2018-07-15	6	-26/+26
\|
*	Update python exception syntax for Python 3.6 compatibility	Brian May	2018-07-13	7	-45/+45
\|
*	Merge branch 'jcristau/security-tracker-head'	Salvatore Bonaccorso	2018-07-07	1	-2/+5
\|\
\| *	lib: add support for the HEAD HTTP method	Julien Cristau	2018-07-06	1	-2/+5
\| \| \| \| \| \| \| \|	Fixes security-tracker-team/security-tracker#3
* \|	Also set Content-Length for HTMLResult	Julien Cristau	2018-07-06	1	-0/+1
\|/
*	Set Content-Length for BinaryResult	Julien Cristau	2018-07-06	1	-0/+1
\|
*	lib: add "headers" attribute on Result objects	Julien Cristau	2018-07-06	1	-31/+26
\| \| \| \|	Make it possible to set arbitrary headers when returning a Result.
*	Reduce list of supported architectures for jessie under LTS support	Salvatore Bonaccorso	2018-06-16	1	-1/+1
\|
*	sources: add name and path info	Emilio Pozuelo Monfort	2018-06-15	1	-6/+9
\| \| \| \|	This avoids having to guess the name from the path.
*	Rename CVECUSTOMERFile to CVEExtendFile	Emilio Pozuelo Monfort	2018-06-08	1	-1/+5
\|
*	Simplify Extends support	Emilio Pozuelo Monfort	2018-06-08	1	-44/+20
\| \| \| \| \| \|	BugExtend.writeDB() is pretty similar to BugBase's, so update the latter to take extends into account when necessary to avoid unneeded duplicated code.
*	Add support for CUSTOMER bugs and CVE extends	Bastian Blank	2018-06-08	1	-1/+36
\|
*	Dynamically create announce queries	Emilio Pozuelo Monfort	2018-06-08	1	-2/+20
\| \| \| \|	Based on the DSA-like files present in the config file.
*	Move source list to a config file	Emilio Pozuelo Monfort	2018-06-08	1	-10/+11
\|
*	Merge DLAFile into DSAFile	Emilio Pozuelo Monfort	2018-06-08	2	-10/+10
\| \| \| \| \|	The only difference is that the regular expressions look for DSA or DLA, but we can just guess that based on the path.
*	Simplify DLAFile	Emilio Pozuelo Monfort	2018-06-08	1	-36/+1
\| \| \| \|	Subclass DSAFile rather than copying it.
*	Revert changes unrelated to the partclone no-dsa marking	Salvatore Bonaccorso	2018-05-05	2	-45/+3
\|
*	partclone no-dsa on wheezy	Emilio Pozuelo Monfort	2018-05-05	2	-3/+45
\|
*	Convert URLs from http to https where it seems safe to do so	Paul Wise	2018-01-17	1	-1/+1
\|
*	Let the CVE parser know about postponed & ignored sub-states	Sebastien Delafond	2017-08-13	1	-1/+1
\| \| \| \|	git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@54714 e39458fd-73e7-0310-bf30-c45bca0a0e42
*	Make sure comment is initialized	Sebastien Delafond	2017-08-11	1	-0/+1
\| \| \| \|	git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@54618 e39458fd-73e7-0310-bf30-c45bca0a0e42
*	Give /tracker/status/release/stable the ability to filter on "ignored" & ↵	Sebastien Delafond	2017-08-10	1	-3/+7
\| \| \| \| \| \|	"postponed" no-dsa substates git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@54582 e39458fd-73e7-0310-bf30-c45bca0a0e42
*	Expose "ignored" & "postponed" no-dsa sub-states to the web UI	Sebastien Delafond	2017-08-10	1	-2/+2
\| \| \| \|	git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@54581 e39458fd-73e7-0310-bf30-c45bca0a0e42
*	Introduce new "ignored" & "postponed" sub-states for no-dsa	Sebastien Delafond	2017-08-10	2	-7/+13
\| \| \| \| \| \| \|	They will be stored in the "reason" field from package_notes_nodsa table, that was unused so far. git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@54580 e39458fd-73e7-0310-bf30-c45bca0a0e42
*	Revert "s/sid/jessie/ for ../../data/packages/<dist>__main_Sources"	Sebastien Delafond	2017-08-04	1	-1/+1
\| \| \| \| \| \| \| \|	(this was meant to remain a local change only) This reverts commit cee737fcf614b926c36d0e612c896da296921f09. git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@54263 e39458fd-73e7-0310-bf30-c45bca0a0e42
*	Fix spelling issue in parsers.py	Sebastien Delafond	2017-08-04	1	-2/+2
\| \| \| \|	git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@54262 e39458fd-73e7-0310-bf30-c45bca0a0e42
*	s/sid/jessie/ for ../../data/packages/<dist>__main_Sources	Sebastien Delafond	2017-08-04	1	-1/+1
\| \| \| \|	git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@54257 e39458fd-73e7-0310-bf30-c45bca0a0e42
*	Fix parser for DLA/list	Sebastien Delafond	2017-08-04	1	-4/+3
\| \| \| \|	git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@54256 e39458fd-73e7-0310-bf30-c45bca0a0e42
*	security_db: Update mappings after stretch stable release	Salvatore Bonaccorso	2017-06-17	1	-16/+16
\| \| \| \|	git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@52650 e39458fd-73e7-0310-bf30-c45bca0a0e42
*	dist_config: Make sid dependent on own supported architectures	Salvatore Bonaccorso	2017-06-17	1	-1/+2
\| \| \| \|	git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@52649 e39458fd-73e7-0310-bf30-c45bca0a0e42