~litios/ubuntu-cve-tracker:oval-fixes-improvements

Branch merges

Propose for merging

Merged into ubuntu-cve-tracker:master at revision 01d2b74924341409183a0858d3a4897f79aead06

Eduardo Barretto: Approve on 2024-01-22

Diff: 101 lines (+41/-20)

1 file modified

scripts/oval_lib.py (+41/-20)

api

Related source package recipes

No recipes using this branch. (?)

Create packaging recipe

Related snap packages

Related charm recipes

5dd4753... by David Fernandez Gonzalez on 2024-01-19

[OVAL] Retrieve update pocket + extra CVE fields.

Add a function to retrieve the pocket of a given
package and version from the cache.

Add Mitigation and Notes fields to the CVE.

*This commit doesn't modify the OVAL output*

Signed-off-by: David Fernandez Gonzalez <email address hidden>

	unit-tests:0 (build)
	check-cves:0 (build)

1 → 2 of 2 results

First • Previous • Next • Last

5078fd6... by David Fernandez Gonzalez on 2024-01-19

[OVAL] Fix get_pkgs function to prevent race conditions.

Sometimes, depending on how the CVEs are loaded, function
get_pkgs wouldn't handle the packages properly. This would
result in different binaries between runs, making OVAL incosistent.

This commit aims to fix this issue.

It also includes the possibility of a future release introducing
a regression (thanks Eduardo!)

Signed-off-by: David Fernandez Gonzalez <email address hidden>

281a173... by Ian Constantin on 2024-01-19

Moving caddy-geo-ip CVE-2023-50463 to not-for-us

8571b35... by Ian Constantin on 2024-01-19

Daily CVE CVSS Refresh

991dd8f... by Steve Beattie on 2024-01-19

kernel/CVE-2023-7042: update info about proposed fix

Signed-off-by: Steve Beattie <email address hidden>

aac120e... by Steve Beattie on 2024-01-19

kernel/CVE-2023-50431: add fix commit, v2 patch link, and bug refs

Signed-off-by: Steve Beattie <email address hidden>

a1920e9... by Bethany Jamison on 2024-01-08

kernel/CVE-2023-50431: add break commit

Fix commit isn't available yet - this break commit was gathered from an unapplied patch.

Signed-off-by: Bethany Jamison <email address hidden>
Message-Id: <email address hidden>
Signed-off-by: Steve Beattie <email address hidden>

15d8a25... by Steve Beattie on 2024-01-19

kernel/CVE-2024-0340: add justification for priority + update bugs

Signed-off-by: Steve Beattie <email address hidden>

14f5974... by Yuxuan Luo on 2024-01-19

kernel/CVE-2024-0340: add break commit and adjust priority

The break commit should be 670ae9caaca4 (“vhost: fix info leak due to
uninitialized memory”) and is likely a follow-up "fix" for
CVE-2018-1118. Since the leaking issue should be solved by the above
commit and this fix commit only zeros memory that was not considered
leaking in CVE-2018-1118, adjusting the priority to low.

Signed-off-by: Yuxuan Luo <email address hidden>
Message-Id: <email address hidden>
Signed-off-by: Steve Beattie <email address hidden>

36f0fe6... by Steve Beattie on 2024-01-19

pacparser CVEs: retriage + noble reintroduction

Signed-off-by: Steve Beattie <email address hidden>