mirrors/poky
1
0
Fork 0
mirror of https://git.yoctoproject.org/poky synced 2026-05-01 06:32:11 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
ccd6eee7fcc83b32278319c3526a13fe856a74bc
poky/meta/recipes-core
History
Peter Marko ccd6eee7fc cve-update-nvd2-native: handle missing vulnStatus 
There is a new CVE which is missing vulnStatus field:
https://services.nvd.nist.gov/rest/json/cves/2.0?cveId=CVE-2025-2682

This leads to:
File: '<snip>/poky/meta/recipes-core/meta/cve-update-nvd2-native.bb', lineno: 336, function: update_db
     0332:
     0333:    accessVector = None
     0334:    vectorString = None
     0335:    cveId = elt['cve']['id']
 *** 0336:    if elt['cve']['vulnStatus'] ==  "Rejected":
     0337:        c = conn.cursor()
     0338:        c.execute("delete from PRODUCTS where ID = ?;", [cveId])
     0339:        c.execute("delete from NVD where ID = ?;", [cveId])
     0340:        c.close()
Exception: KeyError: 'vulnStatus'

(From OE-Core rev: 453c5c8d9031be2b3a25e2a04e0f5f6325ef7298)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
2025-04-01 09:02:41 -07:00
..
base-files
base-files: Drop localhost.localdomain from hosts file
2023-03-23 22:45:34 +00:00
base-passwd
base-passwd: Add the sgx group
2024-12-20 06:01:45 -08:00
busybox
busybox: Fix cut with "-s" flag
2024-09-27 05:57:35 -07:00
coreutils
coreutils: fix CVE-2024-0684
2024-12-02 06:23:20 -08:00
dbus
dbus: disable assertions and enable only modular tests
2024-12-16 05:58:03 -08:00
dbus-wait
meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers
2022-02-20 16:45:25 +00:00
dropbear
dropbear: backport patch for CVE-2023-48795
2024-01-24 04:04:55 -10:00
ell
ell: upgrade 0.49 -> 0.50
2022-08-28 07:51:29 +01:00
expat
expat: patch CVE-2024-50602
2024-11-15 06:05:32 -08:00
fts
recipes: Update github.com urls to use https
2021-11-03 10:12:42 +00:00
gettext
gettext: add MIT conditional as license
2022-04-14 09:47:00 +01:00
glib-2.0
tzdata&tzcode-native: upgrade 2024a -> 2024b
2024-12-02 06:23:20 -08:00
glib-networking
glib-networking: upgrade 2.72.1 -> 2.72.2
2022-08-31 16:54:17 +01:00
glibc
glibc: Suppress GCC -Os warning on user2netname for sunrpc
2025-02-15 06:04:44 -08:00
ifupdown
ifupdown: upgrade 0.8.37 -> 0.8.39
2022-11-09 17:42:08 +00:00
images
build-appliance-image: Update to kirkstone head revision
2025-02-15 06:08:13 -08:00
init-ifupdown
meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers
2022-02-20 16:45:25 +00:00
initrdscripts
udev-extraconf/initrdscripts/parted: Rename mount.blacklist -> mount.ignorelist
2022-07-25 15:11:46 +01:00
initscripts
initscripts: Add custom mount args for /var/lib
2024-05-29 05:24:08 -07:00
kbd
meta, meta-selftest: Replace more non-SPDX license identifiers
2022-03-01 23:44:59 +00:00
libcgroup
libcgroup: upgrade 2.0.1 -> 2.0.2
2022-05-28 10:38:17 +01:00
libxcrypt
libxcrypt-compat: Remove libcrypt.so to fix conflict with libcrypt
2025-03-27 08:16:30 -07:00
libxml
libxml2: mark patch as fixing CVE-2025-27113
2025-03-08 06:35:36 -08:00
meta
cve-update-nvd2-native: handle missing vulnStatus
2025-04-01 09:02:41 -07:00
musl
gcompat: Fix build when usrmerge distro feature is enabled
2022-05-04 13:07:33 +01:00
ncurses
ncurses: Fix CVE-2023-45918
2024-05-15 09:44:14 -07:00
netbase
meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers
2022-02-20 16:45:25 +00:00
newlib
meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers
2022-02-20 16:45:25 +00:00
os-release
os-release: add os-release-initrd package
2022-04-05 22:23:40 +01:00
ovmf
Revert "ovmf: Fix CVE-2023-45236"
2025-02-28 06:51:35 -08:00
packagegroups
packagegroup-self-hosted: update for strace
2022-08-28 07:51:30 +01:00
psplash
psplash: consider the situation of psplash not exist for systemd
2022-12-13 15:23:34 +00:00
readline
meta, meta-selftest: Replace more non-SPDX license identifiers
2022-03-01 23:44:59 +00:00
seatd
seatd: Disable overflow warning as error on ppc64/musl
2022-05-04 13:07:33 +01:00
sysfsutils
sysfsutils: fetch a supported fork from github
2023-07-21 06:27:34 -10:00
systemd
systemd: upgrade 250.5 -> 250.14
2025-03-04 08:46:02 -08:00
sysvinit
sysvinit-inittab/start_getty: Fix respawn too fast
2022-08-31 16:54:17 +01:00
udev
udev-extraconf: fix network.sh script did not configure hotplugged interfaces
2024-11-27 06:27:26 -08:00
update-rc.d
meta/meta-selftest/meta-skeleton: Update LICENSE variable to use SPDX license identifiers
2022-02-20 16:45:25 +00:00
util-linux
util-linux: Define pidfd_* function signatures
2024-11-02 06:32:36 -07:00
volatile-binds
volatile-binds: Change DefaultDependencies from false to no
2022-05-12 16:44:05 +01:00
zlib
zlib: ignore CVE-2023-6992
2024-01-21 08:50:38 -10:00