summaryrefslogtreecommitdiffstats
Commit message (Expand)AuthorAgeFilesLines
* git: set CVE vendor to git-scmsumo-nextRoss Burton2019-11-061-0/+2
* subversion: set CVE vendor to ApacheRoss Burton2019-11-061-0/+2
* boost: set CVE vendor to BoostRoss Burton2019-11-061-0/+2
* ed: set CVE vendor to avoid false positivesRoss Burton2019-11-061-0/+2
* rsync: fix CVEs for included zlibAnuj Mittal2019-11-065-1/+395
* openssl: set CVE vendor to opensslAnuj Mittal2019-11-062-0/+4
* libpng: whitelist CVE-2019-17371Ross Burton2019-11-061-0/+3
* procps: whitelist CVE-2018-1121Ross Burton2019-11-061-0/+3
* libpam: set CVE_PRODUCTRoss Burton2019-11-061-0/+2
* webkitgtk: set CVE_PRODUCTChen Qi2019-11-061-0/+2
* flex: set CVE_PRODUCT to include vendorRoss Burton2019-11-061-0/+3
* libxfont2: set CVE_PRODUCTChen Qi2019-11-061-0/+2
* squashfs-tools: set CVE_PRODUCTChen Qi2019-11-061-0/+2
* ghostscript: set CVE_PRODUCTChen Qi2019-11-061-0/+3
* libsdl: set CVE_PRODUCTChen Qi2019-11-062-0/+4
* dropbear: set CVE_PRODUCTChen Qi2019-11-061-0/+2
* nasm: add CVE_PRODUCTChen Qi2019-11-061-0/+2
* xserver-xorg: set CVE_PRODUCTChen Qi2019-11-061-0/+2
* cve-check: failure to parse versions should be more visibleRoss Burton2019-11-061-2/+2
* cve-check: ensure all known CVEs are in the reportRoss Burton2019-11-061-2/+7
* cve-update-db-native: fix https proxy issuesChin Huat Ang2019-11-061-11/+30
* cve-update-db-native: clean up JSON fetchingRoss Burton2019-11-061-17/+12
* cve-update-db-native: improve metadata parsingRoss Burton2019-11-061-8/+10
* cve-update-db-native: use executemany() to optimise CPE insertionRoss Burton2019-11-061-53/+32
* cve-update-db: actually inherit nativeRoss Burton2019-11-061-2/+1
* cve-update-db-native: use os.path.join instead of +Ross Burton2019-11-061-4/+4
* cve-update-db-native: Remove hash column from database.Pierre Le Magourou2019-11-062-20/+13
* cve-update-db: Use NVD CPE data to populate PRODUCTS tablePierre Le Magourou2019-11-061-14/+74
* cve-update-db-native: use SQL placeholders instead of format stringsRoss Burton2019-11-061-1/+1
* cve-check: Replace CVE_CHECK_CVE_WHITELIST by CVE_CHECK_WHITELISTPierre Le Magourou2019-11-061-11/+11
* cve-check: allow comparison of Vendor as well as ProductRoss Burton2019-11-061-4/+8
* cve-check.bbclass: initialize to_appendMikko Rapeli2019-11-061-0/+1
* glibc: exclude child recipes from CVE scanningRoss Burton2019-11-064-3/+10
* cve-check-tool: removeRoss Burton2019-11-066-565/+0
* cve-check: remove redundant readline CVE whitelistingRoss Burton2019-11-061-4/+9
* cve-check: Update unpatched CVE matchingPierre Le Magourou2019-11-061-14/+40
* cve-check: Depends on cve-update-db-nativePierre Le Magourou2019-11-063-1/+3
* cve-update-db: Catch request.urlopen errors.Pierre Le Magourou2019-11-062-11/+24
* cve-update-db: do_populate_cve_db depends on do_fetchPierre Le Magourou2019-11-061-8/+13
* cve-update-db: Manage proxy if needed.Pierre Le Magourou2019-11-061-2/+9
* cve-check: be idiomaticRoss Burton2019-11-061-8/+9
* cve-update-db: Use std library instead of urllib3Pierre Le Magourou2019-11-061-6/+4
* flac: also add flac to CVE_PRODUCTChen Qi2019-11-061-1/+1
* cve-check: Consider CVE that affects versions with less than operatorPierre Le Magourou2019-11-061-2/+14
* cve-check: Manage CVE_PRODUCT with more than one namePierre Le Magourou2019-11-061-11/+14
* cve-check: Remove dependency to cve-check-tool-nativePierre Le Magourou2019-11-061-45/+26
* cve-update-db: New recipe to update CVE databasePierre Le Magourou2019-11-062-1/+122
* uninative: Switch from bz2 to xzRichard Purdie2019-11-061-2/+2
* yocto-uninative: Update to 2.5 releaseRichard Purdie2019-11-061-3/+3
* devtool: Split tests into multiple classessumoRichard Purdie2019-04-091-52/+61