Commit message (Collapse) | Author | Age | Files | Lines | ||
---|---|---|---|---|---|---|
... | ||||||
* | bugs.py: sort using Release's sort | Emilio Pozuelo Monfort | 2020-07-29 | 1 | -1/+1 | |
| | | | | | string sort doesn't work here, as buster < jessie < stretch. However Release's sort will dtrt. | |||||
* | bugs.py: make PackageNoteNoDSA.release a Release object | Emilio Pozuelo Monfort | 2020-07-29 | 1 | -1/+4 | |
| | | | | Like in the other PackageNote objects | |||||
* | bugs.py: sort using a lambda key function | Emilio Pozuelo Monfort | 2020-07-29 | 1 | -9/+2 | |
| | ||||||
* | debian_support: decode lines when necessary | Emilio Pozuelo Monfort | 2020-07-29 | 1 | -3/+11 | |
| | | | | | | | | | We sometimes get passed lines as bytes, which we need to decode under python3. We should probably add an argument to PackageFile's constructor for when we get a fileObj argument, but let's do that when we no longer have to worry about py2 and py3 compatibility. | |||||
* | security_db: encode data before passing it to base64 | Emilio Pozuelo Monfort | 2020-07-29 | 1 | -3/+3 | |
| | | | | In python3, base64 takes bytes. | |||||
* | security_db: use pickle's dumps and loads | Emilio Pozuelo Monfort | 2020-07-29 | 1 | -5/+3 | |
| | | | | | | | Rather than using StringIO in py2 and BytesIO in py3 and porting away from buffer which is also gone in py3, let's just use dumps and loads and let the pickle library handle the memory representation for us. | |||||
* | debian_support.py: add py3 compatibility for apt-update-file | Emilio Pozuelo Monfort | 2020-07-29 | 1 | -4/+10 | |
| | ||||||
* | web_support.py: make_list: don't subscript the list | Emilio Pozuelo Monfort | 2020-07-29 | 1 | -5/+5 | |
| | | | | | | We may get objects that are not subscriptable in py3, such as map objects, so just iterate over the whole object and pop the last separator instead. | |||||
* | web_support.py: adapt urllib.quote for python3 | Emilio Pozuelo Monfort | 2020-07-29 | 1 | -3/+7 | |
| | ||||||
* | web_support.py: decode data when necessary | Emilio Pozuelo Monfort | 2020-07-29 | 1 | -1/+8 | |
| | | | | We can't pass bytes under python3 | |||||
* | web_support.py: adapt HTTPServer imports for python3 | Emilio Pozuelo Monfort | 2020-07-29 | 1 | -5/+9 | |
| | ||||||
* | web_support.py: adapt StringIO for python3 | Emilio Pozuelo Monfort | 2020-07-29 | 1 | -7/+11 | |
| | ||||||
* | lib/python: replace tabs with spaces | Emilio Pozuelo Monfort | 2020-07-29 | 2 | -2/+2 | |
| | ||||||
* | web_support.py: fix octal numbers under py3 | Emilio Pozuelo Monfort | 2020-07-29 | 1 | -1/+1 | |
| | ||||||
* | debian_support: use BytesIO for GzipFile in python3 | Emilio Pozuelo Monfort | 2020-07-29 | 1 | -2/+6 | |
| | ||||||
* | bugs.py: encode the string before using the digest | Emilio Pozuelo Monfort | 2020-07-29 | 1 | -1/+1 | |
| | | | | Needed for py3 compatibility. | |||||
* | lib/python: use isinstance rather than types | Emilio Pozuelo Monfort | 2020-07-29 | 5 | -35/+47 | |
| | | | | types.TypeFoo are gone in python3. | |||||
* | config.py: force keys() to get evaluated as list | Emilio Pozuelo Monfort | 2020-07-29 | 1 | -1/+1 | |
| | ||||||
* | Replace cPickle with pickle library | Brian May | 2020-07-29 | 2 | -4/+4 | |
| | | | | cPickle isn't available in Python 3. | |||||
* | Use urllib urllib instead of urllib2 | Brian May | 2020-07-29 | 1 | -3/+6 | |
| | ||||||
* | Force map() to get evaluated as list | Brian May | 2020-07-29 | 1 | -1/+1 | |
| | | | | | Under Python 3, map() doesn't return a list (as in Python 2), but must be evaluated before it can be used as a list. | |||||
* | Force keys() to get evaluated as list | Brian May | 2020-07-29 | 3 | -11/+11 | |
| | | | | | Under Python 3, keys() doesn't return a list (as in Python 2), but must be evaluated before it can be used as a list. | |||||
* | Merge branch 'distro-config' into 'master' | Salvatore Bonaccorso | 2020-06-04 | 5 | -186/+109 | |
|\ | | | | | | | | | Distro config reunification See merge request security-tracker-team/security-tracker!48 | |||||
| * | security_db: don't hardcode the list of supported releases | Emilio Pozuelo Monfort | 2020-02-26 | 1 | -5/+6 | |
| | | | | | | | | | | At times there will just be two, so get that list from the config. | |||||
| * | Makefile: don't hardcode Debian releases | Emilio Pozuelo Monfort | 2020-02-26 | 1 | -2/+2 | |
| | | ||||||
| * | Don't hardcode architecture list in the Makefile | Emilio Pozuelo Monfort | 2020-02-26 | 1 | -1/+5 | |
| | | | | | | | | Move it to config.json instead and grab it from there. | |||||
| * | security_db: don't hardcode release names | Emilio Pozuelo Monfort | 2020-02-26 | 1 | -1/+1 | |
| | | ||||||
| * | debian_support: don't hardcode release names | Emilio Pozuelo Monfort | 2020-02-26 | 1 | -2/+3 | |
| | | ||||||
| * | config: add a method to get all releases | Emilio Pozuelo Monfort | 2020-02-26 | 1 | -1/+8 | |
| | | ||||||
| * | security_db: drop squeeze workarounds | Emilio Pozuelo Monfort | 2020-02-26 | 1 | -6/+0 | |
| | | ||||||
| * | security_db: don't hardcode the testing suite codename | Emilio Pozuelo Monfort | 2020-02-26 | 1 | -8/+11 | |
| | | ||||||
| * | dist_config.py: remove unused file | Emilio Pozuelo Monfort | 2020-02-26 | 1 | -97/+0 | |
| | | ||||||
| * | security_db: remove unused getEffectiveVersion method | Emilio Pozuelo Monfort | 2020-02-26 | 1 | -54/+0 | |
| | | ||||||
| * | security_db: don't hardcode release codenames in _initViews | Emilio Pozuelo Monfort | 2020-02-26 | 1 | -1/+5 | |
| | | ||||||
| * | security_db: don't hardcode releases in db queries | Emilio Pozuelo Monfort | 2020-02-26 | 1 | -4/+10 | |
| | | ||||||
| * | security_db: don't hardcode release codenames in calculateDebsecan | Emilio Pozuelo Monfort | 2020-02-26 | 1 | -1/+1 | |
| | | ||||||
| * | security_db: take the sid value in calculateDebsecan0 | Emilio Pozuelo Monfort | 2020-02-26 | 1 | -4/+2 | |
| | | | | | | | | | | When the release is sid, just pass 'sid' rather than the empty string to change that afterwards. | |||||
| * | security_db: don't hardcode codenames in calls to gen_release | Emilio Pozuelo Monfort | 2020-02-26 | 1 | -1/+1 | |
| | | ||||||
| * | security_db: don't hardcode codenames in calls to _calcTesting() | Emilio Pozuelo Monfort | 2020-02-26 | 1 | -4/+8 | |
| | | ||||||
| * | config.py: add python module to read config.json | Emilio Pozuelo Monfort | 2020-02-26 | 1 | -0/+52 | |
| | | ||||||
* | | Add basic Unicode support to the web framework | Florian Weimer | 2020-05-01 | 1 | -20/+22 | |
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | As mentioned in Debian bug #959231 ("security-tracker: Proxy Error on CVE-2020-11565 tracker page"): * Florian Weimer: > * Francesco Poli: > >> Please note that the CVE is mentioned in [DSA-4667-1]. >> >> [DSA-4667-1]: <https://lists.debian.org/debian-security-announce/2020/msg00071.html> >> >> What's wrong with that tracker page? > > It's something in the NVD data that breaks the HTML escaping. This patch adds basic Unicode support to the web framework. I'm not sure if it is the right direction to move in, but it fixes the issue. An alternative fix would be to change the NVD importer not to put Unicode strings into the database, by encoding them as byte strings first. [carnil: Slightly rewrite the commit message] BugLink: https://bugs.debian.org/929228 BugLink: https://bugs.debian.org/959231 Signed-off-by: Florian Weimer <fw@deneb.enyo.de> Signed-off-by: Salvatore Bonaccorso <carnil@debian.org> | |||||
* | | security_db: don't return duplicated advisories | Emilio Pozuelo Monfort | 2020-03-18 | 1 | -1/+1 | |
| | | | | | | | | | | | | This is used to build the advisory table in package views, and it makes no sense to list some advisories (e.g. DSAs that fixed both stable and oldstable) twice. | |||||
* | | nvd.py: Fix typo in Parser when issueing error (VAlueError -> ValueError) | Salvatore Bonaccorso | 2020-03-04 | 1 | -1/+1 | |
|/ | | | | | Fixes: 966aef0927e2 ("Reimplement (incompletely) simplistic NVD parser to handle JSON feed") Signed-off-by: Salvatore Bonaccorso <carnil@debian.org> | |||||
* | Merge branch 'bam/security-tracker-fix_cmp' | Salvatore Bonaccorso | 2020-01-02 | 1 | -1/+2 | |
|\ | | | | | | | See merge request security-tracker-team/security-tracker!40 | |||||
| * | Fix list sort | Brian May | 2019-06-17 | 1 | -1/+2 | |
| | | ||||||
* | | Fix inconsistent leading ident before if statement | Brian May | 2019-12-26 | 1 | -2/+2 | |
| | | ||||||
* | | Reimplement (incompletely) simplistic NVD parser to handle JSON feed | Salvatore Bonaccorso | 2019-10-20 | 1 | -68/+59 | |
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | The reimplementation is focused on only the functionality actually strictly required by the security-tracker. This includes fetching the CVE id and corresponding description. All of specific imapct metrics (severity, range, loss attributes) are not implemented. Those will require a database schema version bump and reimplementation as well for the security_db. Closes: #942670 Signed-off-by: Salvatore Bonaccorso <carnil@debian.org> | |||||
* | | nvd.py: Add missing note that CVE description is returned | Salvatore Bonaccorso | 2019-10-20 | 1 | -0/+1 | |
| | | ||||||
* | | Drop mips from bullseye architectures | Salvatore Bonaccorso | 2019-08-21 | 1 | -1/+1 | |
| | | ||||||
* | | Another place where mips needs to be dropped | Raphaƫl Hertzog | 2019-08-21 | 1 | -1/+1 | |
| | |