Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

feat(syslog): add all CVSS scores/vectors #664

Merged
merged 1 commit into from
Jun 6, 2018
Merged

feat(syslog): add all CVSS scores/vectors #664

merged 1 commit into from
Jun 6, 2018

Conversation

knqyf263
Copy link
Contributor

@knqyf263 knqyf263 commented Jun 6, 2018
edited
Loading

What did you implement:

Add all CVSS scores (NVD, JVN, RedHat, etc.)

How did you implement it:

Iterate all CveContents

How can we verify it:

$ vuls report -to-syslog

$ nc -l 514
<129>2018-06-06T20:44:11+09:00 MBP vuls[77805]: scanned_at="2018-06-06 16:19:18.923111854 +0900 JST" server_name="debian8" os_family="debian" os_release="8.10" ipv4_addr="10.0.2.15,192.168.33.11" ipv6_addr="" packages="linux-image-3.16.0-4-amd64" cve_id="CVE-2018-5750" cvss_score_nvd_v2="2.10" cvss_vector_nvd_v2="AV:L/AC:L/Au:N/C:P/I:N/A:N" cwe_id="CWE-200" source_link="https://nvd.nist.gov/vuln/detail/CVE-2018-5750" summary="The acpi_smbus_hc_add function in drivers/acpi/sbshc.c in the Linux kernel through 4.14.15 allows local users to obtain sensitive address information by reading dmesg data from an SBS HC printk call."

Todos:

You don't have to satisfy all of the following.

  • Write tests
  • Write documentation
  • Check that there aren't other open pull requests for the same issue/feature
  • Format your source code by make fmt
  • Pass the test by make test
  • Provide verification config / commands
  • Enable "Allow edits from maintainers" for this PR
  • Update the messages below

Is this ready for review?: YES
Is it a breaking change?: NO

@knqyf263 knqyf263 self-assigned this Jun 6, 2018
@kotakanbe
Copy link
Member

LGTM

@kotakanbe kotakanbe merged commit 3144faa into future-architect:master Jun 6, 2018
@knqyf263 knqyf263 deleted the add_all_score branch June 6, 2018 11:57
kotakanbe added a commit that referenced this pull request Jun 7, 2018
@kotakanbe
Merge branch 'master' into v0.5.0
288ff85 
* master:
  feat(syslog): add all CVSS scores/vectors (#664)
  fix(report): use CVSS score not calculated from severity preferentially (#663)
kotakanbe added a commit that referenced this pull request Jun 25, 2018
@kotakanbe
Merge branch 'master' into 672
075cfab 
* master:
  pull request to add SLES variant OS SLES_SAP support (#672)
  feat(syslog): add all CVSS scores/vectors (#664)
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees

@knqyf263 knqyf263

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@knqyf263 @kotakanbe