[Secure-testing-commits] r15708 - check-external
Raphael Geissert
geissert at alioth.debian.org
Tue Dec 14 19:11:26 UTC 2010
Author: geissert
Date: 2010-12-14 19:11:25 +0000 (Tue, 14 Dec 2010)
New Revision: 15708
Modified:
check-external/lookup.sh
Log:
lookup.sh: also report TODOs and RESERVED issues
Modified: check-external/lookup.sh
===================================================================
--- check-external/lookup.sh 2010-12-14 19:08:50 UTC (rev 15707)
+++ check-external/lookup.sh 2010-12-14 19:11:25 UTC (rev 15708)
@@ -44,7 +44,8 @@
;;
--help|-h)
echo "Usage: $(basename "$0") [--source|-s vendor] [--after|-a per-year-id] [regex]"
- echo ; echo "Look for NFUs in our tracker but recognised or fixed by a vendor"
+ echo ; echo "Look for NFUs/TODOs/RESERVED in our tracker"
+ echo "which are recognised or fixed by another vendor"
echo "(requires you to run ./update.sh every now and then)"
echo ; echo "Possible vendors:"
echo -e "\tcve (for checking against Red Hat's tracker)"
@@ -86,9 +87,21 @@
fi
# Permanent exclusions can be added below
- o=$(grep -m1 -A1 ^$cve ../data/CVE/list | grep NOT-FOR-US |
- grep -vi redhat | grep -vi 'red hat' | grep -vi pre-dating |
- grep -vi realplayer | grep -vi acroread | grep -vi acrobat |
- grep -viw opera | grep -vi adobe |
- grep -vi 'real player') && echo "$cve: $o" || :
+ o="$(grep -m1 -A1 ^$cve ../data/CVE/list | sed '1{d;q}' |
+ grep -E 'TODO|NOT-FOR-US|RESERVED')" || continue
+ case $o in
+ *NOT-FOR-US*)
+ tr "[:upper:]" "[:lower:]" <<< "${o#*NOT-FOR-US:}" |
+ grep -v redhat | grep -v 'red hat' | grep -v pre-dating |
+ grep -v realplayer | grep -v acroread |
+ grep -v adobe | grep -v acrobat | grep -vw opera |
+ grep -v 'real player' >/dev/null && echo "$cve: $o" || :
+ ;;
+ *TODO:*|*RESERVED*)
+ echo "$cve: $o"
+ ;;
+ *)
+ echo "Unrecognised match: $o" >&2
+ ;;
+ esac
done
More information about the Secure-testing-commits
mailing list