summaryrefslogtreecommitdiffstats
path: root/lib/python/sectracker
Commit message (Collapse)AuthorAgeFilesLines
* xpickle: re-parse the file in case of AttributeErrorEmilio Pozuelo Monfort2023-03-281-6/+1
|
* Add a readable hint on what happens on unpickling errorsDominik George2023-03-281-0/+5
|
* sectracker.parsers: make cvelist et al return a list of BugsEmilio Pozuelo Monfort2023-03-272-4/+11
|
* parsers: make classes mutableEmilio Pozuelo Monfort2023-03-271-19/+58
| | | | | | | The parser is not read-only but has write support, so it makes more sense to have mutable classes so that API users can modify them as appopriate rather than going through hoops to clone objects in order to modify something.
* sectracker.parsers: fix reporting of invalid annotationsEmilio Pozuelo Monfort2023-03-271-1/+1
|
* sectracker.parsers: fix itp bug checkEmilio Pozuelo Monfort2023-03-271-1/+1
|
* sectracker.analyzers: check the right struct fieldsEmilio Pozuelo Monfort2023-03-271-2/+2
|
* lib: add support for data/<extended>/list in the parsersSylvain Beucler2021-10-221-0/+16
|
* sectracker.parsers: rename version to kind in package_pseudoEmilio Pozuelo Monfort2020-12-041-6/+6
| | | | | | The version is tracked in package_version, here we have a <tag> assigned to the kind variable of the PackageAnnotation, so let's call it kind to make it less confusing.
* sectracker.parsers: fix innerdispatch callbackEmilio Pozuelo Monfort2020-12-041-1/+1
| | | | The signature no longer includes a bugs list.
* sectracker.parsers: there's no 'bug filed' urgencyEmilio Pozuelo Monfort2020-12-041-2/+1
| | | | That may have been used once upon a time, but it's not used anymore.
* sectracker.parsers: use _sortedtupleEmilio Pozuelo Monfort2020-12-041-3/+1
|
* sectracker.parsers: unconditionally import internEmilio Pozuelo Monfort2020-12-041-5/+1
| | | | We no longer support Python 2.
* sectracker.parsers: add function to write the file backEmilio Pozuelo Monfort2020-12-021-0/+60
| | | | | This change and the previous ones based on work by Brian with additional fixes and adaptations by me.
* sectracker.parsers: be explicit when building PackageAnnotationsEmilio Pozuelo Monfort2020-12-021-6/+27
| | | | | In some cases we are intentionally passing versions as kinds or kinds as versions, and making it explicit makes it less confusing.
* sectracker.parsers: include TEMP issues in the CVE regexEmilio Pozuelo Monfort2020-12-021-1/+1
| | | | In order to support extended CVE files.
* sectracker.parsers: do not uniquify CVE namesEmilio Pozuelo Monfort2020-12-021-14/+1
| | | | | | | | | We need the original name (basically the year) in order to write it back later. Besides the function was taking the line number rather than a hash of the description, so it was buggy anyway. If something needs the unique name at some point, we can add it in an additional field.
* sectracker.parsers: don't sort the xrefsEmilio Pozuelo Monfort2020-12-021-1/+1
| | | | | Take them as they come, as our sorting is different than the one in the file.
* sectracker.parsers: don't wrap and deref the argumentsEmilio Pozuelo Monfort2020-12-021-4/+4
| | | | We are no longer concatenating tuples.
* sectracker.parsers: better parse annotationsEmilio Pozuelo Monfort2020-12-021-35/+27
|
* sectracker.parsers: keep the parenthesis in the descriptionEmilio Pozuelo Monfort2020-12-021-4/+0
| | | | We need them in order to write the file back.
* Remove checks for apt_pkg.version_compareEmilio Pozuelo Monfort2020-11-101-8/+4
| | | | | The rename happened too long ago, and VersionCompare is long gone. We assume it exists in security_db anyway.
* sectracker: remove future importsEmilio Pozuelo Monfort2020-11-102-4/+0
|
* sectracker/repo.py: compare data to a bytes objectEmilio Pozuelo Monfort2020-11-101-1/+1
| | | | Otherwise we'll run into an endless loop under Python 3.
* sectracker/repo.py: fix calls to urllib under python3Emilio Pozuelo Monfort2020-11-101-3/+3
|
* sectracker/repo.py: don't look for sha1 fieldsEmilio Pozuelo Monfort2020-11-101-1/+0
| | | | Release files no longer contain them.
* sectracker.parsers: fix intern under py3Emilio Pozuelo Monfort2020-08-051-0/+5
|
* sectracker.repo: use standard json moduleEmilio Pozuelo Monfort2020-08-051-2/+2
|
* sectracker.xpickle: open file in binary modeEmilio Pozuelo Monfort2020-08-051-1/+1
|
* sectracker.diagnostics: use isstring for py3 compatibilityEmilio Pozuelo Monfort2020-08-051-1/+3
|
* Replace cPickle with pickle libraryBrian May2020-07-291-1/+1
| | | | cPickle isn't available in Python 3.
* Replace file() with open() for Python 3 compatabilityBrian May2019-03-042-5/+5
|
* Merge branch 'bam/security-tracker-use_pythons_namedtuple'Salvatore Bonaccorso2018-11-114-96/+3
|\
| * Use the namedtuple class supplied with PythonBrian May2018-08-204-96/+3
| |
* | Replace "x.has_key(y)" with "y in x" syntaxBrian May2018-08-201-1/+1
|/
* Fix print statements for Python 3.6 compatibilityBrian May2018-08-062-2/+2
|
* Replace <> with != for Python 3.6 compatibilityBrian May2018-07-152-3/+3
|
* Update python exception syntax for Python 3.6 compatibilityBrian May2018-07-133-3/+3
|
* Let the CVE parser know about postponed & ignored sub-statesSebastien Delafond2017-08-131-1/+1
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@54714 e39458fd-73e7-0310-bf30-c45bca0a0e42
* Fix spelling issue in parsers.pySebastien Delafond2017-08-041-2/+2
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@54262 e39458fd-73e7-0310-bf30-c45bca0a0e42
* Fix parser for DLA/listSebastien Delafond2017-08-041-4/+3
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@54256 e39458fd-73e7-0310-bf30-c45bca0a0e42
* add support for squeeze-lts (Closes: #759727 once Florian has applied this ↵Salvatore Bonaccorso2014-09-011-0/+17
| | | | | | to soler.d.o) git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@28539 e39458fd-73e7-0310-bf30-c45bca0a0e42
* Revert "add support for squeeze-lts (Closes: #759727 once Florian has ↵Salvatore Bonaccorso2014-09-011-17/+0
| | | | | | | | applied this to soler.d.o)" This reverts commit 6357e7f64b5cdab2f194dc5a1ae0ff309bb625f6. git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@28536 e39458fd-73e7-0310-bf30-c45bca0a0e42
* add support for squeeze-lts (Closes: #759727 once Florian has applied this ↵Holger Levsen2014-08-311-0/+17
| | | | | | to soler.d.o) git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@28525 e39458fd-73e7-0310-bf30-c45bca0a0e42
* prepare for new CVE formatThijs Kinkhorst2013-12-051-1/+1
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@24590 e39458fd-73e7-0310-bf30-c45bca0a0e42
* DSA-2181-1: fix typoFlorian Weimer2011-03-041-4/+0
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@16302 e39458fd-73e7-0310-bf30-c45bca0a0e42
* sectracker.analyzers.bestversion(): new subroutineFlorian Weimer2010-05-301-0/+24
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@14769 e39458fd-73e7-0310-bf30-c45bca0a0e42
* sectracker.repo.Config: add cache for map of parsed filesFlorian Weimer2010-05-301-1/+9
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@14768 e39458fd-73e7-0310-bf30-c45bca0a0e42
* sectracker.analyzers.vulnerabilities(): allow {} overridesFlorian Weimer2010-05-101-3/+7
| | | | | | | | See thread "A new ambiguity" on the debian-security-tracker list: <http://lists.debian.org/debian-security-tracker/2010/05/msg00011.html> git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@14666 e39458fd-73e7-0310-bf30-c45bca0a0e42
* sectracker.analyzers.fixedversions: renamed from vulnerabilitiesFlorian Weimer2010-05-101-1/+1
| | | | git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@14665 e39458fd-73e7-0310-bf30-c45bca0a0e42

© 2014-2024 Faster IT GmbH | imprint | privacy policy