Package: libparse-debianchangelog-perl
Version: 1.2.0-1
Severity: normal
Tags: patch
Hi,
CVE syntax will be extended per 2014-01-01, see:
https://cve.mitre.org/cve/identifiers/syntaxchange.html
Attached patch updates the regexp in this package to also detect the
longer forms.
Cheers,
Thijs
diff -Nur libparse-debianchangelog-perl-1.2.0.orig/lib/Parse/DebianChangelog/ChangesFilters.pm libparse-debianchangelog-perl-1.2.0/lib/Parse/DebianChangelog/ChangesFilters.pm
--- libparse-debianchangelog-perl-1.2.0.orig/lib/Parse/DebianChangelog/ChangesFilters.pm 2011-04-04 18:41:06.000000000 +0200
+++ libparse-debianchangelog-perl-1.2.0/lib/Parse/DebianChangelog/ChangesFilters.pm 2013-12-05 14:09:47.643913682 +0100
@@ -105,7 +105,7 @@
sub cve_to_mitre {
my ($text, $cgi) = @_;
- $text =~ s!\b((?:CVE|CAN)-\d{4}-\d{4})\b
+ $text =~ s!\b((?:CVE|CAN)-\d{4}-\d{4,})\b
!$cgi->a({ -href=>"http://cve.mitre.org/cgi-bin/cvename.cgi?name=$1"; }, $1)
!xego;
return $text;
