Skip to content

fix incorrect hyphens used in BRSAs for nvidia kmods #55

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Feb 25, 2025
Merged

fix incorrect hyphens used in BRSAs for nvidia kmods #55

merged 1 commit into from
Feb 25, 2025

Conversation

@ginglis13
Copy link
Contributor

@ginglis13 ginglis13 commented Feb 24, 2025
edited
Loading

Issue number:

Description of changes:

Text copied directly from NVIDIA security bulletins
uses a special "non-breaking hyphen" character for
hyphens, resulted in encodings like CVE‑2025‑23359 instead of
using a normal "-" when serializing to XML

Testing done:

Using lint rule added to twoliter, before:

╰─➤  ./tools/twoliter/twoliter make check-advisories --cargo-home /home/fedora/kernel-kit/.cargo --arch $(uname -m)
[2025-02-24T22:54:07Z INFO  twoliter::project::lock] Resolving SDK project reference to check against lock file
[2025-02-24T22:54:07Z INFO  twoliter::project::lock::image] Resolving dependency image dependency 'bottlerocket-sdk-0.50.1@public.ecr.aws/bottlerocket/bottlerocket-sdk:v0.50.1'.
[cargo-make] INFO - cargo make 0.37.22
[cargo-make] INFO -
[cargo-make] INFO - Build File: /home/fedora/kernel-kit/build/tools/Makefile.toml
[cargo-make] INFO - Task: check-advisories
[cargo-make] INFO - Profile: development
[cargo-make] INFO - Running Task: check-advisories
advisories/1.0.4/BRSA-4mz3mlhteng6.toml
advisories/1.0.4/BRSA-6jzsr8lqncrq.toml
advisories/1.0.4/BRSA-bl2apnymyndl.toml
advisories/1.0.4/BRSA-jd3wf9wpwu5l.toml
advisories/1.0.4/BRSA-tdebxkarxymw.toml
error: found non-ASCII characters in advisories
Error while executing command, exit code: 1
Error: Command was unsuccessful, exit code 105

After:

╰─➤  ./tools/twoliter/twoliter make check-advisories --cargo-home /home/fedora/kernel-kit/.cargo --arch $(uname -m)
[2025-02-24T22:56:08Z INFO  twoliter::project::lock] Resolving SDK project reference to check against lock file
[2025-02-24T22:56:09Z INFO  twoliter::project::lock::image] Resolving dependency image dependency 'bottlerocket-sdk-0.50.1@public.ecr.aws/bottlerocket/bottlerocket-sdk:v0.50.1'.
[cargo-make] INFO - cargo make 0.37.22
[cargo-make] INFO -
[cargo-make] INFO - Build File: /home/fedora/kernel-kit/build/tools/Makefile.toml
[cargo-make] INFO - Task: check-advisories
[cargo-make] INFO - Profile: development
[cargo-make] INFO - Running Task: check-advisories
[cargo-make] INFO - Build Done in 0.20 seconds.

Terms of contribution:

By submitting this pull request, I agree that this contribution is dual-licensed under the terms of both the Apache License, version 2.0, and the MIT license.

@ginglis13
fix incorrect hyphens used in BRSAs for nvidia kmods
92a9d54 
Text copied directly from NVIDIA security bulletins
uses a special "non-breaking hyphen" character for
hyphens, resulted in encodings like CVE‑2025‑23359 instead of
using a normal "-" when serializing to XML

Signed-off-by: Gavin Inglis <giinglis@amazon.com>
@ginglis13 ginglis13 mentioned this pull request Feb 24, 2025
Open
@ginglis13 ginglis13 changed the title fix incorrect hyphens used in BRSAs for nvidia kmods fix incorrect hyphens used in BRSAs for nvidia kmods Feb 24, 2025
larvacea
larvacea approved these changes Feb 25, 2025
View reviewed changes
Copy link
Contributor

@larvacea larvacea left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Just. Wow.

@ginglis13 ginglis13 merged commit 8e6de5e into bottlerocket-os:develop Feb 25, 2025
@ginglis13 ginglis13 mentioned this pull request Feb 25, 2025
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@rpkelly rpkelly rpkelly approved these changes

@arnaldo2792 arnaldo2792 arnaldo2792 approved these changes

+1 more reviewer

@larvacea larvacea larvacea approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@ginglis13 @rpkelly @larvacea @arnaldo2792