lp:~alexmurray/ubuntu-cve-tracker
- Get this repository:
-
git clone
https://git.launchpad.net/~alexmurray/ubuntu-cve-tracker
Branches
Name | Last Modified | Last Commit |
---|---|---|
cve-lib- |
2024-09-09 02:33:42 UTC |
many: fixup released versions which violate new syntax check
Author:
Alex Murray
many: fixup released versions which violate new syntax check Signed-off-by: Alex Murray <alex.murray@ |
ignore- |
2024-09-05 02:19:58 UTC |
scripts/post-release-to-web-cve-tracker.py: ignore server errors for validate
Author:
Alex Murray
scripts/ Since the web API is flaky, ignore server errors - this is fine since the point Signed-off-by: Alex Murray <alex.murray@ |
fix-source- |
2024-08-30 10:44:58 UTC |
scripts/source_map.py: fix multiline binaries and try get source pkg version
Author:
Alex Murray
scripts/ Some entries will have binaries that go over more than one line - in this case Also try and extract a source_version for each binary package if it is present, Signed-off-by: Alex Murray <alex.murray@ |
dump-uct-as-json | 2024-08-29 12:30:16 UTC |
scripts/dump-uct-as-json: add script to dump entire UCT into JSON
Author:
Alex Murray
scripts/ This uses the JSON format of the ubuntu. Signed-off-by: Alex Murray <alex.murray@ |
cisa-kev-poc | 2024-08-12 09:40:35 UTC |
scripts/publish-cves-to-website-api.py: don't push global CVE tags
Author:
Alex Murray
scripts/ The web team doesn't have any knowledge of this so don't try and push them for Signed-off-by: Alex Murray <alex.murray@ |
update- |
2024-07-04 06:23:23 UTC |
scripts/git-hooks/pre-commit: properly handle any spaces in filenames
Author:
Alex Murray
scripts/ Signed-off-by: Alex Murray <alex.murray@ |
check-cves- |
2024-05-22 05:52:43 UTC |
scripts/check-cves: ignore CVEs from QNAP
Author:
Alex Murray
scripts/check-cves: ignore CVEs from QNAP Signed-off-by: Alex Murray <alex.murray@ |
try-lookup- |
2024-05-20 03:00:18 UTC |
scripts/cve_lib.py: try looking up kernel commits from local git clone
Author:
Alex Murray
scripts/cve_lib.py: try looking up kernel commits from local git clone First try and look up kernel git commit details from the locally configured This should speed up these operations when a local git repo exists is configured Signed-off-by: Alex Murray <alex.murray@ |
check-cves- |
2024-05-20 00:51:09 UTC |
scripts/check-cves: try match CVE references against package homepages
Author:
Alex Murray
scripts/check-cves: try match CVE references against package homepages Parse and store the Homepage field in source_map and then try and match these Signed-off-by: Alex Murray <alex.murray@ |
fix-packages- |
2024-05-14 05:18:44 UTC |
.launchpad.yaml: fix packages-mirror inside lpci
Author:
Alex Murray
.launchpad.yaml: fix packages-mirror inside lpci Signed-off-by: Alex Murray <alex.murray@ |
oracular- |
2024-05-05 15:17:15 UTC |
`./scripts/sync-from-versions.py -s not-affected -u` for oracular
Author:
Alex Murray
`./scripts/ Signed-off-by: Alex Murray <alex.murray@ |
add-cpes- |
2024-05-01 03:40:56 UTC |
scripts: refactor cpe handling to add some unit tests
Author:
Alex Murray
scripts: refactor cpe handling to add some unit tests Signed-off-by: Alex Murray <alex.murray@ |
dump-features- |
2024-03-22 01:51:59 UTC |
scripts/dump-features: place AppArmor userns restrictions under AppArmor
Author:
Alex Murray
scripts/ Signed-off-by: Alex Murray <alex.murray@ |
active- |
2024-03-22 00:26:26 UTC |
scripts/active_edit: explicitly parse cvss options
Author:
Alex Murray
scripts/ This allows to handle and report any issues to the user in a more graceful Signed-off-by: Alex Murray <alex.murray@ |
optimise- |
2024-03-20 01:08:57 UTC |
scripts/cve_lib.py: optimise get_long_kernel_hash()
Author:
Alex Murray
scripts/cve_lib.py: optimise get_long_ The initial kernel git commit is a single huge commit which added the entire Signed-off-by: Alex Murray <alex.murray@ |
fix-pyright- |
2024-03-18 01:23:04 UTC |
scripts/check-cves: fix a bunch of pyright warnings
Author:
Alex Murray
scripts/check-cves: fix a bunch of pyright warnings Before: ± pyright scripts/check-cves After: ± pyright scripts/check-cves Signed-off-by: Alex Murray <alex.murray@ |
misc-cve- |
2024-02-28 05:51:47 UTC |
scripts/cve-mode.el: fix typo in docstring
Author:
Alex Murray
scripts/ Signed-off-by: Alex Murray <alex.murray@ |
check-syntax- |
2024-02-28 01:02:55 UTC |
scripts/cve_lib.py: remove assert in favor of more graceful failure
Author:
Alex Murray
scripts/cve_lib.py: remove assert in favor of more graceful failure Signed-off-by: Alex Murray <alex.murray@ |
python3- |
2024-02-26 07:26:32 UTC |
scripts/active_edit: update for Python 3.12 deprecations
Author:
Alex Murray
scripts/ Signed-off-by: Alex Murray <alex.murray@ |
preserve- |
2024-02-05 06:38:47 UTC |
scripts/cve_lib.py: when adding CVSS preserve original line contents
Author:
Alex Murray
scripts/cve_lib.py: when adding CVSS preserve original line contents As seen in the recent refresh of CVSS for retired/ Signed-off-by: Alex Murray <alex.murray@ |
fix-lp- |
2024-02-05 02:56:46 UTC |
scripts: move priority reason checking to check-syntax (LP: #2028915)
Author:
Alex Murray
scripts: move priority reason checking to check-syntax (LP: #2028915) Signed-off-by: Alex Murray <alex.murray@ |
add-yescrypt- |
2023-10-29 23:16:44 UTC |
scripts/dump-features: yescrpyt is default password hash since jammy
Author:
Alex Murray
scripts/ Signed-off-by: Alex Murray <alex.murray@ |
add-boilerplate |
2023-08-08 06:07:40 UTC |
Add a basic README.boilerplates to help document various use-cases
Author:
Alex Murray
Add a basic README.boilerplates to help document various use-cases Signed-off-by: Alex Murray <alex.murray@ |
source- |
2023-07-27 15:36:44 UTC |
scripts/test_source_map.py: test get_aliases_of_ubuntu_package()
Author:
Alex Murray
scripts/ Signed-off-by: Alex Murray <alex.murray@ |
check-syntax-n-jobs | 2023-07-26 14:16:43 UTC |
scripts/check-syntax: add cli option to specify the number of jobs
Author:
Alex Murray
scripts/ Also switch to concurrent. Signed-off-by: Alex Murray <alex.murray@ |
die-partner-die | 2023-06-02 12:26:01 UTC |
die partner die
Author:
Alex Murray
die partner die The partner mirror hasn't been used or supported for a very long time so let's Signed-off-by: Alex Murray <alex.murray@ |
restore- |
2023-04-03 00:09:36 UTC |
scripts/test_cve_lib.py: remove debug print from test_release_sort
Author:
Alex Murray
scripts/ Signed-off-by: Alex Murray <alex.murray@ |
fix-lp-2012327 | 2023-03-29 05:29:31 UTC |
scripts/test_cve_lib.py: test cve_lib release lists are sorted OOTB
Author:
Alex Murray
scripts/ Signed-off-by: Alex Murray <alex.murray@ |
no-empty- |
2023-03-28 23:22:21 UTC |
scripts/test_cve_lib.py: parametrize testing of non-empty title/desc
Author:
Alex Murray
scripts/ Ensure we test each separate entry in package info overrides separately so that Since we are using pytest, we can use unittest.SubTest() as it doesn't seem to Signed-off-by: Alex Murray <alex.murray@ |
check-syntax- |
2023-03-21 05:46:57 UTC |
scripts/check-syntax: Refactor debug printing
Author:
Alex Murray
scripts/ Avoid having to copy-pasta if opt.debug everytime we want to print. Signed-off-by: Alex Murray <alex.murray@ |
sis-generate- |
2023-03-08 03:03:53 UTC |
scripts/sis-generate-usn: Add XXX placeholder for reducing binaries
Author:
Alex Murray
scripts/ See Also fix latent pyflakes3 warnings to appears our git pre-commit hook Signed-off-by: Alex Murray <alex.murray@ |
launchpad- |
2023-03-07 04:18:01 UTC |
CVE-2021-33621: ruby3.0 was removed in lunar in favor of ruby3.1
Author:
Alex Murray
CVE-2021-33621: ruby3.0 was removed in lunar in favor of ruby3.1 https:/ Signed-off-by: Alex Murray <alex.murray@ |
speed-up- |
2023-02-08 00:00:10 UTC |
scripts/test_cve_lib.py: Only test parse each CVSSV3 score once
Author:
Alex Murray
scripts/ Signed-off-by: Alex Murray <alex.murray@ |
restore- |
2022-10-23 06:44:20 UTC |
scripts/active_edit: Actually use the autoconfirm command-line option
Author:
Alex Murray
scripts/ Signed-off-by: Alex Murray <alex.murray@ |
package- |
2022-09-15 07:02:44 UTC |
package-db: Print details when assertion check fails
Author:
Alex Murray
package-db: Print details when assertion check fails Signed-off-by: Alex Murray <alex.murray@ |
noboilerplates-3 | 2022-09-05 05:27:50 UTC |
scripts/sync-from-eol.py: Remove unused import of apt
Author:
Alex Murray
scripts/ Signed-off-by: Alex Murray <alex.murray@ |
only-add- |
2022-06-30 06:53:04 UTC |
scripts/active_edit: Only add DNE entries for Ubuntu product releases
Author:
Alex Murray
scripts/ This is a further refinement of the previous merge proposal at Signed-off-by: Alex Murray <alex.murray@ |
always- |
2022-06-24 07:43:50 UTC |
scripts/active_edit: Always add entries for base Ubuntu releases
Author:
Alex Murray
scripts/ Ensure that for the base / progenitor Ubuntu releases we always add a CVE By doing this only for the progenitor releases we make sure we don't then Signed-off-by: Alex Murray <alex.murray@ |
noboilerplates | 2022-03-03 04:17:12 UTC |
More WIP - get active_edit seemingly working well-ish
Author:
Alex Murray
More WIP - get active_edit seemingly working well-ish Signed-off-by: Alex Murray <alex.murray@ |
amurray-scratch | 2021-11-10 01:40:46 UTC |
Yet even another test change
Author:
Alex Murray
Yet even another test change |
cleanup- |
2021-10-21 05:30:02 UTC |
cve_lib: Cleanup subprojects API
Author:
Alex Murray
cve_lib: Cleanup subprojects API Rename get_subproject() to get_subproject_ |
customer- |
2021-10-14 01:33:25 UTC |
scripts/ubuntu-table: Don't source ubuntu-security-tools.conf to parse it
Author:
Alex Murray
scripts/ Instead reuse read_config_file() from cve_lib |
check-cves- |
2021-09-29 12:48:28 UTC |
scripts/check-cves: Speed up trying to match a CVE against a known package
Author:
Alex Murray
scripts/check-cves: Speed up trying to match a CVE against a known package Calculate the list of all known packages once only and clean up matching of |
parse-patches- |
2021-09-22 00:37:32 UTC |
cve_lib tests: add additional tests for missing patches entries
Author:
Steve Beattie
cve_lib tests: add additional tests for missing patches entries Signed-off-by: Steve Beattie <steve. |
validate- |
2021-07-22 04:49:53 UTC |
check-syntax: Parse and validate date fields more completely
Author:
Alex Murray
check-syntax: Parse and validate date fields more completely This ensures the value can actually be parsed by other utilities. Perhaps Signed-off-by: Alex Murray <alex.murray@ |
mistriage- |
2020-07-27 08:43:16 UTC |
scripts/check-cves: Fix up comment to match code
Author:
Alex Murray
scripts/check-cves: Fix up comment to match code |
boilerplate- |
2020-07-22 06:57:44 UTC |
check-cves: Include boilerplate packages in suggestions during triage
Author:
Alex Murray
check-cves: Include boilerplate packages in suggestions during triage A CVE description might contain MySQL but we only have packages like |
cvss | 2020-03-05 06:37:46 UTC |
scripts/test_cve_lib.py: Actually test that our calculated CVSSv3 matches the...
Author:
Alex Murray
scripts/ This ensures our implementation matches theirs |
import-rhel8oval | 2020-02-05 01:31:29 UTC |
scripts/(check-|process_)cves: Add support for RHEL8 OVAL source
Author:
Alex Murray
scripts/ This takes the Red Hat OVAL data and uses it as a source for CVEs during |
master | 2020-02-04 20:32:45 UTC |
Daily re-triage of universe CVEs
Author:
Mike Salvatore
Daily re-triage of universe CVEs |
catch-duplicate |
2019-11-12 01:19:37 UTC |
sis-generate-usn: Ensure new-usn.sh allows to --force usn generation
Author:
Alex Murray
sis-generate-usn: Ensure new-usn.sh allows to --force usn generation |
snaps | 2019-09-19 13:07:47 UTC |
cve.vim: Make vim cve syntax snap aware
Author:
Alex Murray
cve.vim: Make vim cve syntax snap aware |
nvd-json | 2019-09-18 21:33:53 UTC |
gitignore nvd json
Author:
Alex Murray
gitignore nvd json |
parse-notes | 2019-09-16 13:44:47 UTC |
cve_lib.py: Encapsulate notes parsing to make code cleaner
Author:
Alex Murray
cve_lib.py: Encapsulate notes parsing to make code cleaner |
1 → 54 of 54 results | First • Previous • Next • Last |