From cb931c6f4ba55696010819b046cace471ef460d4 Mon Sep 17 00:00:00 2001
From: Salvatore Bonaccorso <carnil@debian.org>
Date: Thu, 16 Nov 2023 22:35:14 +0100
Subject: check-external: update: Disable fetching from Red Hat Bugzilla

Signed-off-by: Salvatore Bonaccorso <carnil@debian.org>
---
 check-external/update.sh | 6 ++++--
 1 file changed, 4 insertions(+), 2 deletions(-)

(limited to 'check-external')

diff --git a/check-external/update.sh b/check-external/update.sh
index 2c068e0910..52e7c001d4 100755
--- a/check-external/update.sh
+++ b/check-external/update.sh
@@ -45,14 +45,16 @@ check_list() {
 # This should be better done via a rewrite and using python-bugzilla
 # but it is sufficient for now to get some additional CVE information
 # from Red Hat source
-wget -O redhat-bugzilla.html 'https://bugzilla.redhat.com/buglist.cgi?classification=Other&component=vulnerability&f1=alias&o1=regexp&product=Security%20Response&query_format=advanced&v1=^CVE-.*&order=priority%2Cbug_severity&limit=0'
+# Fetching from RedHat bugzilla via query is unreliable, thus disabled
+# on 2023-11-16 for the time beeing.
+# wget -O redhat-bugzilla.html 'https://bugzilla.redhat.com/buglist.cgi?classification=Other&component=vulnerability&f1=alias&o1=regexp&product=Security%20Response&query_format=advanced&v1=^CVE-.*&order=priority%2Cbug_severity&limit=0'
 # Some extra data is readily available as an xml file (until 2023-11-08)
 # discontinued as per https://www.redhat.com/en/blog/future-red-hat-security-data
 # last archived version: https://access.redhat.com/security/data/archive/cve-metadata-from-bugzilla_20231108.xml
 # Gather data from Red Hat Security Data API instead
 # https://access.redhat.com/documentation/en-us/red_hat_security_data_api/1.0/html/red_hat_security_data_api/index
 curl -s https://access.redhat.com/hydra/rest/securitydata/cve.json?per_page=1000000 | jq -r '.[] | .CVE' > redhat-security-data-api.list
-cat redhat-bugzilla.html redhat-security-data-api.list |
+cat redhat-security-data-api.list |
 perl -ne 'print "$1\n" while (s/(CVE-[12][0-9]{3}-[0-9]{4,})//);' | sort -u > cve.list
 check_list cve.list
 
-- 
cgit v1.2.3