summaryrefslogtreecommitdiffstats
AgeCommit message (Expand)AuthorFilesLines
2019-11-07git: set CVE vendor to git-scmsumo-nextRoss Burton1-0/+2
2019-11-07subversion: set CVE vendor to ApacheRoss Burton1-0/+2
2019-11-07boost: set CVE vendor to BoostRoss Burton1-0/+2
2019-11-07ed: set CVE vendor to avoid false positivesRoss Burton1-0/+2
2019-11-07rsync: fix CVEs for included zlibAnuj Mittal5-1/+395
2019-11-07openssl: set CVE vendor to opensslAnuj Mittal2-0/+4
2019-11-07libpng: whitelist CVE-2019-17371Ross Burton1-0/+3
2019-11-07procps: whitelist CVE-2018-1121Ross Burton1-0/+3
2019-11-07libpam: set CVE_PRODUCTRoss Burton1-0/+2
2019-11-07webkitgtk: set CVE_PRODUCTChen Qi1-0/+2
2019-11-07flex: set CVE_PRODUCT to include vendorRoss Burton1-0/+3
2019-11-07libxfont2: set CVE_PRODUCTChen Qi1-0/+2
2019-11-07squashfs-tools: set CVE_PRODUCTChen Qi1-0/+2
2019-11-07ghostscript: set CVE_PRODUCTChen Qi1-0/+3
2019-11-07libsdl: set CVE_PRODUCTChen Qi2-0/+4
2019-11-07dropbear: set CVE_PRODUCTChen Qi1-0/+2
2019-11-07nasm: add CVE_PRODUCTChen Qi1-0/+2
2019-11-07xserver-xorg: set CVE_PRODUCTChen Qi1-0/+2
2019-11-07cve-check: failure to parse versions should be more visibleRoss Burton1-2/+2
2019-11-07cve-check: ensure all known CVEs are in the reportRoss Burton1-2/+7
2019-11-07cve-update-db-native: fix https proxy issuesChin Huat Ang1-11/+30
2019-11-07cve-update-db-native: clean up JSON fetchingRoss Burton1-17/+12
2019-11-07cve-update-db-native: improve metadata parsingRoss Burton1-8/+10
2019-11-07cve-update-db-native: use executemany() to optimise CPE insertionRoss Burton1-53/+32
2019-11-07cve-update-db: actually inherit nativeRoss Burton1-2/+1
2019-11-07cve-update-db-native: use os.path.join instead of +Ross Burton1-4/+4
2019-11-07cve-update-db-native: Remove hash column from database.Pierre Le Magourou2-20/+13
2019-11-07cve-update-db: Use NVD CPE data to populate PRODUCTS tablePierre Le Magourou1-14/+74
2019-11-07cve-update-db-native: use SQL placeholders instead of format stringsRoss Burton1-1/+1
2019-11-07cve-check: Replace CVE_CHECK_CVE_WHITELIST by CVE_CHECK_WHITELISTPierre Le Magourou1-11/+11
2019-11-07cve-check: allow comparison of Vendor as well as ProductRoss Burton1-4/+8
2019-11-07cve-check.bbclass: initialize to_appendMikko Rapeli1-0/+1
2019-11-07glibc: exclude child recipes from CVE scanningRoss Burton4-3/+10
2019-11-07cve-check-tool: removeRoss Burton6-565/+0
2019-11-07cve-check: remove redundant readline CVE whitelistingRoss Burton1-4/+9
2019-11-07cve-check: Update unpatched CVE matchingPierre Le Magourou1-14/+40
2019-11-07cve-check: Depends on cve-update-db-nativePierre Le Magourou3-1/+3
2019-11-07cve-update-db: Catch request.urlopen errors.Pierre Le Magourou2-11/+24
2019-11-07cve-update-db: do_populate_cve_db depends on do_fetchPierre Le Magourou1-8/+13
2019-11-07cve-update-db: Manage proxy if needed.Pierre Le Magourou1-2/+9
2019-11-07cve-check: be idiomaticRoss Burton1-8/+9
2019-11-07cve-update-db: Use std library instead of urllib3Pierre Le Magourou1-6/+4
2019-11-07flac: also add flac to CVE_PRODUCTChen Qi1-1/+1
2019-11-07cve-check: Consider CVE that affects versions with less than operatorPierre Le Magourou1-2/+14
2019-11-07cve-check: Manage CVE_PRODUCT with more than one namePierre Le Magourou1-11/+14
2019-11-07cve-check: Remove dependency to cve-check-tool-nativePierre Le Magourou1-45/+26
2019-11-07cve-update-db: New recipe to update CVE databasePierre Le Magourou2-1/+122
2019-11-07uninative: Switch from bz2 to xzRichard Purdie1-2/+2
2019-11-07yocto-uninative: Update to 2.5 releaseRichard Purdie1-3/+3
2019-11-07bitbake: bitbake-worker child process create group before registering SIGTERM...sumoIvan Efimov1-3/+5