vulnerabilities.cgi: Regard mitigations that only mitigate something still as vulnerable
authorMichael Tremer <michael.tremer@ipfire.org>
Wed, 22 May 2019 10:08:43 +0000 (11:08 +0100)
committerMichael Tremer <michael.tremer@ipfire.org>
Wed, 22 May 2019 14:18:31 +0000 (15:18 +0100)
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>
html/cgi-bin/vulnerabilities.cgi

index b7e11c7..74d2220 100644 (file)
@@ -125,12 +125,6 @@ for my $vuln (sort keys %VULNERABILITIES) {
                $colour = "white";
                $bgcolour = ${Header::colourred};
 
-       # Mitigated but smt is enabled
-       } elsif ($status eq "Mitigation-SMT") {
-               $status_message = $Lang::tr{'mitigated'};
-               $colour = "white";
-               $bgcolour = ${Header::colourred};
-
        # Mitigated
        } elsif ($status eq "Mitigation") {
                $status_message = $Lang::tr{'mitigated'};
@@ -233,8 +227,9 @@ sub check_status($) {
        my $status = <FILE>;
        close(FILE);
 
+       # Fix status when something has been mitigated, but not fully, yet
        if ($status =~ /^(Mitigation): (.*vulnerable.*)$/) {
-               return ("Mitigation-SMT", $2);
+               return ("Vulnerable", $2);
        }
 
        if ($status =~ /^(Vulnerable|Mitigation): (.*)$/) {