Code review comment for ~rodrigo-zaiden/ubuntu-cve-tracker:check_syntax
Revision history for this message
| Rodrigo Figueiredo Zaiden (rodrigo-zaiden) wrote | # |
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
0e1f616
(Get the code!)
> Good find. Do you have an example of a CVE this helps?
yeah, there are something about 600 entries that would benefit from this change.
most of them are kernel CVEs that were marked as "end of kernel support" because
before lunar went EOL, those kernels were already out of support, but there are
other interesting cases as well.
for a full view, I've uploaded the result of
$ ./scripts/
at: https:/
and simplifying, good results besides kernel cases are,
CVE-2023-4001:
grub2 incorrect ignored detail 'does not impact Ubuntu or Secure Boot' for 'lunar', try 'ignored (end of life, was ignored [does not impact Ubuntu or Secure Boot])'
grub2-signed incorrect ignored detail 'does not impact Ubuntu or Secure Boot' for 'lunar', try 'ignored (end of life, was ignored [does not impact Ubuntu or Secure Boot])'
grub2-unsigned incorrect ignored detail 'does not impact Ubuntu or Secure Boot' for 'lunar', try 'ignored (end of life, was ignored [does not impact Ubuntu or Secure Boot])'
CVE-2022-43680:
thunderbird incorrect ignored detail 'bundled deps handled by upstream in new versions' for 'lunar', try 'ignored (end of life, was ignored [bundled deps handled by upstream in new versions])'
CVE-2020-14145:
openssh incorrect ignored detail 'see notes' for 'lunar', try 'ignored (end of life, was ignored [see notes])'