[Git][security-tracker-team/security-tracker][master] auto-nfu: Add product-based rule for Trellix

[Moritz Muehlenhoff (@jmm)]

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
a1d6cf32 by Moritz Muehlenhoff at 2025-04-23T11:03:59+02:00
auto-nfu: Add product-based rule for Trellix

The scope is:
All Trellix Enterprise (formerly McAfee Enterprise and FireEye) products,
as well as vulnerabilities in third-party software discovered by Trellix
Advanced Research Center (Trellix ACR) that are not in another CNA’s scope.

So we can't use the CNA in general.

- - - - -


1 changed file:

- data/packages/nfu.yaml


Changes:

=====================================
data/packages/nfu.yaml
=====================================
@@ -246,6 +246,11 @@
     - cna: tenable
     - anyOf:
       - product: Nessus
+- reason: Trellix
+  allOf:
+    - cna: trellix
+    - anyOf:
+      - product: Trellix HX Console
 # Description based rules
 - reason: CodeAstro
   description: '.*\b(?i:Code\s?Astro)\s.*\s(?i:(system))\b.*'



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a1d6cf3291cd56225b45296af964c95f77ad2a0a

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a1d6cf3291cd56225b45296af964c95f77ad2a0a
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250423/d8ab29a8/attachment-0001.htm>