diff mbox series

[RFC] cve-update-nvd2: ignore rejected CVEs

Message ID 20240212195346.1315761-1-ross.burton@arm.com
State New
Headers show
Series [RFC] cve-update-nvd2: ignore rejected CVEs | expand

Commit Message

Ross Burton Feb. 12, 2024, 7:53 p.m. UTC 
From: Ross Burton <ross.burton@arm.com>

We shouldn't consider CVEs which have been marked as rejected or
disputed by either NIST or the upstream project.

Signed-off-by: Ross Burton <ross.burton@arm.com>
---
 meta/recipes-core/meta/cve-update-nvd2-native.bb | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)
diff mbox series

Patch

diff --git a/meta/recipes-core/meta/cve-update-nvd2-native.bb b/meta/recipes-core/meta/cve-update-nvd2-native.bb
index bfe48b27e79..719b2f639a1 100644
--- a/meta/recipes-core/meta/cve-update-nvd2-native.bb
+++ b/meta/recipes-core/meta/cve-update-nvd2-native.bb
@@ -170,7 +170,8 @@  def update_db_file(db_tmp_file, d, database_time):
     conn = sqlite3.connect(db_tmp_file)
     initialize_db(conn)
 
-    req_args = {'startIndex' : 0}
+    req_args = {'startIndex' : 0,
+                'noRejected': ''}
 
     # The maximum range for time is 120 days
     # Force a complete update if our range is longer