* [meta-networking][PATCH] netcat: Set CPE_PRODUCT
@ 2020-07-02 16:36 andrestc
2020-07-02 16:49 ` [oe] " Andreas Müller
0 siblings, 1 reply; 3+ messages in thread
From: andrestc @ 2020-07-02 16:36 UTC (permalink / raw)
To: openembedded-devel; +Cc: Andre Carvalho
This way yocto cve-check can find open CVE's. See also:
http://lists.openembedded.org/pipermail/openembedded-core/2017-July/139897.html
"Results from cve-check are not very good at the moment.
One of the reasons for this is that component names used in CVE
database differ from yocto recipe names. This series fixes several
of those name mapping problems by setting the CVE_PRODUCT correctly
in the recipes. To check this mapping with after a build, I'm exporting
LICENSE and CVE_PRODUCT variables to buildhistory for recipes and
packages."
Value added is based on:
https://nvd.nist.gov/products/cpe/search/results?keyword=netcat&status=FINAL&orderBy=CPEURI&namingFormat=2.3
Signed-off-by: Andre Carvalho <andrestc@fb.com>
---
meta-networking/recipes-support/netcat/netcat_0.7.1.bb | 2 ++
1 file changed, 2 insertions(+)
diff --git a/meta-networking/recipes-support/netcat/netcat_0.7.1.bb b/meta-networking/recipes-support/netcat/netcat_0.7.1.bb
index 14d743f82..1e113de51 100644
--- a/meta-networking/recipes-support/netcat/netcat_0.7.1.bb
+++ b/meta-networking/recipes-support/netcat/netcat_0.7.1.bb
@@ -16,6 +16,8 @@ SRC_URI[sha256sum] = "b55af0bbdf5acc02d1eb6ab18da2acd77a400bafd074489003f3df0967
inherit autotools
+CVE_PRODUCT = "netcat_project:netcat"
+
do_install_append() {
install -d ${D}${bindir}
mv ${D}${bindir}/nc ${D}${bindir}/nc.${BPN}
--
2.24.1
^ permalink raw reply related [flat|nested] 3+ messages in thread
* Re: [oe] [meta-networking][PATCH] netcat: Set CPE_PRODUCT
2020-07-02 16:36 [meta-networking][PATCH] netcat: Set CPE_PRODUCT andrestc
@ 2020-07-02 16:49 ` Andreas Müller
2020-07-06 19:14 ` Khem Raj
0 siblings, 1 reply; 3+ messages in thread
From: Andreas Müller @ 2020-07-02 16:49 UTC (permalink / raw)
To: andrestc; +Cc: openembeded-devel
On Thu, Jul 2, 2020 at 6:36 PM Andre Carvalho via
lists.openembedded.org <andrestc=fb.com@lists.openembedded.org> wrote:
There is a typo in commit title
Andreas
>
> This way yocto cve-check can find open CVE's. See also:
>
> http://lists.openembedded.org/pipermail/openembedded-core/2017-July/139897.html
>
> "Results from cve-check are not very good at the moment.
> One of the reasons for this is that component names used in CVE
> database differ from yocto recipe names. This series fixes several
> of those name mapping problems by setting the CVE_PRODUCT correctly
> in the recipes. To check this mapping with after a build, I'm exporting
> LICENSE and CVE_PRODUCT variables to buildhistory for recipes and
> packages."
>
> Value added is based on:
> https://nvd.nist.gov/products/cpe/search/results?keyword=netcat&status=FINAL&orderBy=CPEURI&namingFormat=2.3
>
> Signed-off-by: Andre Carvalho <andrestc@fb.com>
> ---
> meta-networking/recipes-support/netcat/netcat_0.7.1.bb | 2 ++
> 1 file changed, 2 insertions(+)
>
> diff --git a/meta-networking/recipes-support/netcat/netcat_0.7.1.bb b/meta-networking/recipes-support/netcat/netcat_0.7.1.bb
> index 14d743f82..1e113de51 100644
> --- a/meta-networking/recipes-support/netcat/netcat_0.7.1.bb
> +++ b/meta-networking/recipes-support/netcat/netcat_0.7.1.bb
> @@ -16,6 +16,8 @@ SRC_URI[sha256sum] = "b55af0bbdf5acc02d1eb6ab18da2acd77a400bafd074489003f3df0967
>
> inherit autotools
>
> +CVE_PRODUCT = "netcat_project:netcat"
> +
> do_install_append() {
> install -d ${D}${bindir}
> mv ${D}${bindir}/nc ${D}${bindir}/nc.${BPN}
> --
> 2.24.1
>
>
^ permalink raw reply [flat|nested] 3+ messages in thread
* Re: [oe] [meta-networking][PATCH] netcat: Set CPE_PRODUCT
2020-07-02 16:49 ` [oe] " Andreas Müller
@ 2020-07-06 19:14 ` Khem Raj
0 siblings, 0 replies; 3+ messages in thread
From: Khem Raj @ 2020-07-06 19:14 UTC (permalink / raw)
To: Andreas Müller, andrestc; +Cc: openembeded-devel
On 7/2/20 9:49 AM, Andreas Müller wrote:
> On Thu, Jul 2, 2020 at 6:36 PM Andre Carvalho via
> lists.openembedded.org <andrestc=fb.com@lists.openembedded.org> wrote:
> There is a typo in commit title
yeah some users have seen this issue especially on patchwork this causes
trouble too, I have to manually edit it when I apply the patch but such
is life. I wished the mail systems were sane.
>
> Andreas
>>
>> This way yocto cve-check can find open CVE's. See also:
>>
>> http://lists.openembedded.org/pipermail/openembedded-core/2017-July/139897.html
>>
>> "Results from cve-check are not very good at the moment.
>> One of the reasons for this is that component names used in CVE
>> database differ from yocto recipe names. This series fixes several
>> of those name mapping problems by setting the CVE_PRODUCT correctly
>> in the recipes. To check this mapping with after a build, I'm exporting
>> LICENSE and CVE_PRODUCT variables to buildhistory for recipes and
>> packages."
>>
>> Value added is based on:
>> https://nvd.nist.gov/products/cpe/search/results?keyword=netcat&status=FINAL&orderBy=CPEURI&namingFormat=2.3
>>
>> Signed-off-by: Andre Carvalho <andrestc@fb.com>
>> ---
>> meta-networking/recipes-support/netcat/netcat_0.7.1.bb | 2 ++
>> 1 file changed, 2 insertions(+)
>>
>> diff --git a/meta-networking/recipes-support/netcat/netcat_0.7.1.bb b/meta-networking/recipes-support/netcat/netcat_0.7.1.bb
>> index 14d743f82..1e113de51 100644
>> --- a/meta-networking/recipes-support/netcat/netcat_0.7.1.bb
>> +++ b/meta-networking/recipes-support/netcat/netcat_0.7.1.bb
>> @@ -16,6 +16,8 @@ SRC_URI[sha256sum] = "b55af0bbdf5acc02d1eb6ab18da2acd77a400bafd074489003f3df0967
>>
>> inherit autotools
>>
>> +CVE_PRODUCT = "netcat_project:netcat"
>> +
>> do_install_append() {
>> install -d ${D}${bindir}
>> mv ${D}${bindir}/nc ${D}${bindir}/nc.${BPN}
>> --
>> 2.24.1
>>
>>
>>
>>
^ permalink raw reply [flat|nested] 3+ messages in thread
end of thread, other threads:[~2020-07-06 19:14 UTC | newest]
Thread overview: 3+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2020-07-02 16:36 [meta-networking][PATCH] netcat: Set CPE_PRODUCT andrestc
2020-07-02 16:49 ` [oe] " Andreas Müller
2020-07-06 19:14 ` Khem Raj
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.