Bug#731438: Update CVE regexp for extended CVE format

Thijs Kinkhorst Thu, 05 Dec 2013 05:21:47 -0800

Package: aptdaemon
Severity: normal
Tags: patch

Hi,


CVE syntax will be extended per 2014-01-01, see:
https://cve.mitre.org/cve/identifiers/syntaxchange.html

Attached patch updates the regexp in this package to also detect the
longer forms.


Cheers,
Thijs

diff -Nur aptdaemon-1.1.1.old/aptdaemon/pkcompat.py aptdaemon-1.1.1/aptdaemon/pkcompat.py
--- aptdaemon-1.1.1.old/aptdaemon/pkcompat.py	2013-08-11 21:07:59.000000000 +0200
+++ aptdaemon-1.1.1/aptdaemon/pkcompat.py	2013-12-05 14:16:03.190690491 +0100
@@ -92,7 +92,7 @@
 HREF_BUG_UBUNTU = "https://bugs.launchpad.net/bugs/%s";
 
 # Regular expression to find cve references
-MATCH_CVE = "CVE-\d{4}-\d{4}"
+MATCH_CVE = "CVE-\d{4}-\d{4,}"
 HREF_CVE = "http://web.nvd.nist.gov/view/vuln/detail?vulnId=%s";
 
 # Map Debian sections to the PackageKit group name space

Bug#731438: Update CVE regexp for extended CVE format

Reply via email to