-
-
Notifications
You must be signed in to change notification settings - Fork 1.2k
Raspberry Pi OS(Raspbian) scanning using OVAL DB #1019
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Merged
kotakanbe
merged 48 commits into
future-architect:master
from
MaineK00n:raspberrypi-oval
Aug 25, 2020
Merged
Raspberry Pi OS(Raspbian) scanning using OVAL DB #1019
kotakanbe
merged 48 commits into
future-architect:master
from
MaineK00n:raspberrypi-oval
Aug 25, 2020
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
9 tasks
@kotakanbe |
kotakanbe
requested changes
Aug 20, 2020
kotakanbe
approved these changes
Aug 21, 2020
kotakanbe
pushed a commit
that referenced
this pull request
Jun 21, 2021
* fix (bug) : using ScanResults refs #1019 * feat(gost): WIP change priority of CVE Info in Debian * feat(report): change priority of CVE Info in Debian * refactor: move RemoveRaspbianPackFromResult * style: remove comment * fix: lint error * style: change coding style * feat(report): support reporting with gost alone * fix: merge error * refactor(debian): change code to be simple
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
What did you implement:
The survey(#1001) showed that on the Raspberry Pi OS, when the scan mode is other than
deep
to use Debian OVAL. ChangeLog is still used for packages such aslibraspberrypi-dev, ffmpeg 7:4.1.4-1+rpt7~deb10u1
that exist only in Raspberry Pi OS.As of vuls v0.11.3, when the scan target is Raspbian, the following bugs that can not get Changelog are fixed.
Also, due to this commit(7f8c975), the result of Changelog could not be saved in Cache. This bug will also be resolved in this PR.
Added support for Debian Security Tracker with gost.
In this PR, I also corrected the forgetting corrections around Amazon's OVAL. (72e3f44)
Fixes #1001
Type of change
How Has This Been Tested?
The operation was confirmed by executing as follows.
OVAL DB
Debian Security Tracker
Changelog
example detect CVEs
Scan Time
fast scan
fast-root scan
deep scan
Checklist:
You don't have to satisfy all of the following.
make fmt
make test
Is this ready for review?: YES
Reference