summaryrefslogtreecommitdiffstats
path: root/lib/python/bugs.py
Commit message (Collapse)AuthorAgeFilesLines
* Revert "bugs.py: Hint towards a typo issue on check"Salvatore Bonaccorso2023-08-021-3/+1
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This reverts commit 63a9aa4515f4335203346034dcf842b067ab0fcc. Samuel Henrique reported on IRC to get a message "release note must follow its package note" when trying to commit diff --git c/data/CVE/list i/data/CVE/list index 5f829a4c..a3741dd6 100644 --- c/data/CVE/list +++ i/data/CVE/list @@ -92086,10 +92086,12 @@ CVE-2022-28702 (Incorrect Default Permissions vulnerability in ABB e-Design allo CVE-2022-1615 (In Samba, GnuTLS gnutls_rnd() can fail and give predictable random val ...) [experimental] - samba 2:4.17.0+dfsg-1 - samba 2:4.16.5+dfsg-2 (bug #1021024) + [buster] - sambda <not-affected> (Vulnerable code introduced later) [bullseye] - samba <postponed> (Minor issue) NOTE: https://bugzilla.samba.org/show_bug.cgi?id=15103 NOTE: https://gitlab.com/samba-team/samba/-/merge_requests/2644 - NOTE: https://gitlab.com/samba-team/samba/-/commit/9849e7440e30853c61a80ce1f11b7b244ed766fe (samba-4.17.0rc1) + NOTE: Introduced by: https://gitlab.com/samba-team/samba/-/commit/664eed2e926f8f572b81e6d7c8e09b7ccbafb908 (samba-4.12.0) + NOTE: Fixed by: https://gitlab.com/samba-team/samba/-/commit/9849e7440e30853c61a80ce1f11b7b244ed766fe (samba-4.17.0rc1) CVE-2022-1614 (The WP-EMail WordPress plugin before 2.69.0 prioritizes getting a visi ...) NOT-FOR-US: WordPress plugin CVE-2022-1613 (The Restricted Site Access WordPress plugin before 7.3.2 prioritizes g ...) In this case the error comes because of the release "[buster] - sambda ..." does not follow a package note "- sambda ...", which hints this time to a possible typo in the source package name. If the source package name would have been correct, the syntax check would have indicated the wrong order next. But this is not generally only a hint to a typo. Samewise the message would come if two source package enties are covered and a release note is put before the actual package note, e.g. - linux ... [buster] - amd64-microcode ... - amd64-microcode Revert the change as the hint is given to check if something is wrong adding the release note. It *might* be a typo in the source package note, but it might be as well a release note which is missplaced but valid. That said, this hints at that the notation of 'package note' and 'release note' is not sufficiently well explained and might need some clarification in the message from the syntax check or documentation.
* bugs.py: Hint towards a typo issue on checkSamuel Henrique2023-08-011-1/+3
|
* bugs.py: add some checks for package notesEmilio Pozuelo Monfort2020-11-051-10/+48
|
* bugs.py: sort using Release's sortEmilio Pozuelo Monfort2020-07-291-1/+1
| | | | | string sort doesn't work here, as buster < jessie < stretch. However Release's sort will dtrt.
* bugs.py: make PackageNoteNoDSA.release a Release objectEmilio Pozuelo Monfort2020-07-291-1/+4
| | | | Like in the other PackageNote objects
* bugs.py: sort using a lambda key functionEmilio Pozuelo Monfort2020-07-291-9/+2
|
* bugs.py: encode the string before using the digestEmilio Pozuelo Monfort2020-07-291-1/+1
| | | | Needed for py3 compatibility.
* lib/python: use isinstance rather than typesEmilio Pozuelo Monfort2020-07-291-13/+13
| | | | types.TypeFoo are gone in python3.
* Force keys() to get evaluated as listBrian May2020-07-291-1/+1
| | | | | Under Python 3, keys() doesn't return a list (as in Python 2), but must be evaluated before it can be used as a list.
* Fix list sortBrian May2019-06-171-1/+2
|
* lib/python/bugs.py: Use explicit list comprehension; the "lambda (x,)" ↵Chris Lamb2019-02-111-2/+2
| | | | syntax is not actually valid in Python 3.
* CVEExtendFile: treat TEMP-* entries as uniqueEmilio Pozuelo Monfort2018-12-041-0/+9
| | | | | | Otherwise, they will get rehashed into a different temp name, preventing one to add notes to TEMP entries in an extend file.
* Replace "x.has_key(y)" with "y in x" syntaxBrian May2018-08-201-2/+2
|
* Replace <> with != for Python 3.6 compatibilityBrian May2018-07-151-4/+4
|
* Update python exception syntax for Python 3.6 compatibilityBrian May2018-07-131-21/+21
|
* Rename CVECUSTOMERFile to CVEExtendFileEmilio Pozuelo Monfort2018-06-081-1/+5
|
* Simplify Extends supportEmilio Pozuelo Monfort2018-06-081-44/+20
| | | | | | BugExtend.writeDB() is pretty similar to BugBase's, so update the latter to take extends into account when necessary to avoid unneeded duplicated code.
* Add support for CUSTOMER bugs and CVE extendsBastian Blank2018-06-081-1/+36
|
* Merge DLAFile into DSAFileEmilio Pozuelo Monfort2018-06-081-9/+9
| | | | | The only difference is that the regular expressions look for DSA or DLA, but we can just guess that based on the path.
* Simplify DLAFileEmilio Pozuelo Monfort2018-06-081-36/+1
| | | | Subclass DSAFile rather than copying it.
* Revert changes unrelated to the partclone no-dsa markingSalvatore Bonaccorso2018-05-051-41/+1
|
* partclone no-dsa on wheezyEmilio Pozuelo Monfort2018-05-051-1/+41
|
* Introduce new "ignored" & "postponed" sub-states for no-dsaSebastien Delafond2017-08-101-2/+7
| | | | | | | They will be stored in the "reason" field from package_notes_nodsa table, that was unused so far. git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@54580 e39458fd-73e7-0310-bf30-c45bca0a0e42
* Revert "WIP: improve backports support. (this is really WIP: see ↵Holger Levsen2014-10-031-2/+2
| | | | | | | | debian_support.py)" This reverts commit a47339bf5db9ec1be2709e1e687c2b5d5df313e7. git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@29229 e39458fd-73e7-0310-bf30-c45bca0a0e42
* WIP: improve backports support. (this is really WIP: see debian_support.py)Holger Levsen2014-10-031-2/+2
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@29228 e39458fd-73e7-0310-bf30-c45bca0a0e42
* Display end-of-life information in the web view. (Closes: #642987) -Holger Levsen2014-09-251-2/+2
| | | | | | | abuses urgency for now, until the packages_notes table has a tag column. git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@29026 e39458fd-73e7-0310-bf30-c45bca0a0e42
* misc small cleanupsHolger Levsen2014-09-121-2/+0
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@28739 e39458fd-73e7-0310-bf30-c45bca0a0e42
* add support for squeeze-lts (Closes: #759727 once Florian has applied this ↵Salvatore Bonaccorso2014-09-011-3/+44
| | | | | | to soler.d.o) git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@28539 e39458fd-73e7-0310-bf30-c45bca0a0e42
* Revert "add support for squeeze-lts (Closes: #759727 once Florian has ↵Salvatore Bonaccorso2014-09-011-44/+3
| | | | | | | | applied this to soler.d.o)" This reverts commit 6357e7f64b5cdab2f194dc5a1ae0ff309bb625f6. git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@28536 e39458fd-73e7-0310-bf30-c45bca0a0e42
* add support for squeeze-lts (Closes: #759727 once Florian has applied this ↵Holger Levsen2014-08-311-3/+44
| | | | | | to soler.d.o) git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@28525 e39458fd-73e7-0310-bf30-c45bca0a0e42
* prepare for new CVE formatThijs Kinkhorst2013-12-051-4/+4
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@24590 e39458fd-73e7-0310-bf30-c45bca0a0e42
* Raise a proper exception instead of failing an assertionRaphael Geissert2012-08-191-0/+4
| | | | | | | | | | fw: why is there a reason field? it doesn't seem to be used at all. In fact, it pretty much looks like 'comment' is redundant and 'reason' should be the one getting a value assigned. git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@19975 e39458fd-73e7-0310-bf30-c45bca0a0e42
* lib/python/bugs.py: switch to hash-based temporary namesFlorian Weimer2011-01-141-1/+10
| | | | | | | Thanks to Stefan Fritsch for the suggestion. git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@15860 e39458fd-73e7-0310-bf30-c45bca0a0e42
* use nvd urgencies and add finer control for per-release pagesMichael Gilbert2010-02-071-5/+2
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@14058 e39458fd-73e7-0310-bf30-c45bca0a0e42
* per-release page refactoringMichael Gilbert2010-02-071-6/+6
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@14057 e39458fd-73e7-0310-bf30-c45bca0a0e42
* adding support for <undetermined> in the tracker service. feedback and ↵Michael Gilbert2010-01-021-1/+7
| | | | | | comments are very welcome. git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@13694 e39458fd-73e7-0310-bf30-c45bca0a0e42
* Let's just go ahead and commit to see if it works. If anythingMoritz Muehlenhoff2009-12-271-0/+11
| | | | | | | | breaks, I'll revert. Unfortunately I don't have a test setup for the Security Tracker and I don't know how to setup one. git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@13667 e39458fd-73e7-0310-bf30-c45bca0a0e42
* lib/python/bug.spy (FileBase.__iter__): use kludge for <no-dsa>, tooFlorian Weimer2009-10-211-0/+7
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@13057 e39458fd-73e7-0310-bf30-c45bca0a0e42
* lib/python/bugs.py: Replace integer type asserts to with int conversionFlorian Weimer2008-11-231-3/+8
| | | | | | | The reason is that even in Python 2.5, numeric objects fluctuate between int and long types. git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@10465 e39458fd-73e7-0310-bf30-c45bca0a0e42
* Rejected CVEs with package notes are no longer an errorFlorian Weimer2007-12-251-10/+5
| | | | | | | | | | | | Without this change, an update from the CVE database may result in failed consistency checks, which is not desirable. In a later commit, the web front end will be extended to list such CVE entries. This will provide interested parties with a means to perform cleanups. git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@7720 e39458fd-73e7-0310-bf30-c45bca0a0e42
* Fix typo in error messageFlorian Weimer2007-12-251-1/+1
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@7719 e39458fd-73e7-0310-bf30-c45bca0a0e42
* CVE no longer uses separate names for candidatesFlorian Weimer2007-12-251-3/+1
| | | | | | | This means that we can simplify bugs.BugBase.cveStatus a bit. git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@7718 e39458fd-73e7-0310-bf30-c45bca0a0e42
* Remove unused methodsFlorian Weimer2007-12-251-79/+0
| | | | | | | | | | | | | | The following methods are removed: bugs.PackageNote.affects bugs.PackageNote.affectsKernel bugs.PackageNote.fixedVersion bugs.PackageNote.sourceStatus bugs.BugBase.hasTODO bugs.BugBase.isKernelOnly git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@7715 e39458fd-73e7-0310-bf30-c45bca0a0e42
* * lib/python/bugs.py (PackageNote, BugBase, Bug):Florian Weimer2007-06-101-3/+3
| | | | | | Losen type checks for string arguments, to support Unicode strings. git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@5989 e39458fd-73e7-0310-bf30-c45bca0a0e42
* make tracker accept May as a month name for DTSAsStefan Fritsch2007-05-171-1/+1
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@5861 e39458fd-73e7-0310-bf30-c45bca0a0e42
* After the release of etch, the DTSA file will contain historicFlorian Weimer2007-04-061-3/+2
| | | | | | | | | | | | | | | | entries for etch, and new ones for lenny. Our previous automatic tagging of all entries as etch does not work anymore. Hence, we make the release indicator explicit. * lib/python/bugs.py (DTSAFile.finishBug): Verify that a release has been specified. No longer default to "etch". * data/DTSA/list Mark all entries as etch. git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@5632 e39458fd-73e7-0310-bf30-c45bca0a0e42
* Treat packages marked as <removed> as source packages.Florian Weimer2007-02-181-1/+9
| | | | | | | | | | | | | | | | | This allows us to track firefox issues again. * lib/python/bugs.py (FileBase): Keep track of removed packages. * lib/python/security_db.py (DB.readBugs): Populate removed_packages table using <removed> entries. (DB.readRemovedPackages): Remove method. * bin/update-db: Do not call readRemovedPackages anymore. git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@5470 e39458fd-73e7-0310-bf30-c45bca0a0e42
* Various changes to switch from FAKE- to TEMP- prefixesFlorian Weimer2006-12-101-1/+1
| | | | | | | | (Yeah, less than stellar engineering that this isn't concentrated in a single place.) git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@5103 e39458fd-73e7-0310-bf30-c45bca0a0e42
* * lib/python/bugs.py (FileBase.re_package_version)Florian Weimer2006-09-301-1/+1
| | | | | | | Yet another fix for ~ versions. git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@4782 e39458fd-73e7-0310-bf30-c45bca0a0e42
* * lib/python/bugs.py (FileBase.__iter__):Florian Weimer2006-06-021-1/+1
| | | | | | | Fix name generation for bugs involving <no-dsa> notes. git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@4110 e39458fd-73e7-0310-bf30-c45bca0a0e42

© 2014-2024 Faster IT GmbH | imprint | privacy policy