]> git.ipfire.org Git - thirdparty/openembedded/openembedded-core-contrib.git/commit
projects / thirdparty / openembedded / openembedded-core-contrib.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 38d558e) | patch
cve-check: Modify judgment processing using "=" in version comparison
authorMatsunaga-Shinji <shin.matsunaga@fujitsu.com>
Wed, 29 Nov 2023 02:19:15 +0000 (11:19 +0900)
committerRichard Purdie <richard.purdie@linuxfoundation.org>
Sat, 2 Dec 2023 17:15:30 +0000 (17:15 +0000)
commita1989e4197178c2431ceca499e0b4876b233b131
treeed7dccd69591e1fca2c99a6483fc1d625ea00d61tree | snapshot
parent38d558ea63c66fd02d2c3fab79dae8ce65e4aa13commit | diff
cve-check: Modify judgment processing using "=" in version comparison

Judgment processing of vulnerable using "=" compares characters as strings rather than numbers,
and misjudges "cases that do not match in strings but do match in numbers" as "Patched".
(e.g. PV = "1.2.0" and Vulnerabilities Affected Versions (registered with NVD) = "1.2")

Therefore, if the comparison operator used in the judgment processing of vulnerable is "=",
add numeric comparison processing.

Signed-off-by: Shinji Matsunaga <shin.matsunaga@fujitsu.com>
Signed-off-by: Shunsuke Tokumoto <s-tokumoto@fujitsu.com>
Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
meta/classes/cve-check.bbclass diff | blob | blame | history
Mirror of git://git.openembedded.org/openembedded-core-contrib