[CVE] fix kanboard issue

This commit is contained in:
Ryan Mulligan 2019-12-07 20:56:08 -08:00
parent c6f7aa5d5f
commit 9a395bdd48
2 changed files with 5 additions and 6 deletions

View File

@ -1,10 +1,4 @@
* Issues
** kanboard: 1.2.11 -> 1.2.12
https://github.com/NixOS/nixpkgs/pull/74429
cve is about a kanboard plugin provided by jenkins not kanboard itself
* Fixed
** uzbl: 0.9.0 -> 0.9.1
- [[https://nvd.nist.gov/vuln/detail/CVE-2010-0011][CVE-2010-0011]]
@ -37,3 +31,6 @@ cve is about a kanboard plugin provided by jenkins not kanboard itself
Looks like maybe go used to use dates for versions and now uses
regular versions
** kanboard: 1.2.11 -> 1.2.12
https://github.com/NixOS/nixpkgs/pull/74429
cve is about a kanboard plugin provided by jenkins not kanboard itself

View File

@ -31,6 +31,8 @@ filter _ cpeMatch "arena" _
cpeVendor (cpeMatchCPE cpeMatch) == Just "openforis" = False
filter _ cpeMatch "thrift" _
| cpeVendor (cpeMatchCPE cpeMatch) == Just "facebook" = False
filter _ cpeMatch "kanboard" _
| cpeTargetSoftware (cpeMatchCPE cpeMatch) == Just "jenkins" = False
filter _cve _match _productID _version = True
anyVersionInfixOf :: Text -> VersionMatcher -> Bool