Bug 28326 - Mageia vulnerability checker
Summary: Mageia vulnerability checker
Status: NEW
Alias: None
Product: Infrastructure
Classification: Unclassified
Component: Others (show other bugs)
Version: unspecified
Hardware: All Linux
Priority: Normal enhancement
Target Milestone: ---
Assignee: Sysadmin Team
QA Contact:
URL:
Whiteboard:
Keywords:
Depends on:
Blocks:
 
Reported: 2021-02-08 21:18 CET by David Walser
Modified: 2021-02-08 21:18 CET (History)
1 user (show)

See Also:
Source RPM:
CVE:
Status comment:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Description David Walser 2021-02-08 21:18:47 CET 
Google announced this on February 5:
https://security.googleblog.com/2021/02/launching-osv-better-vulnerability.html

So it sounds like they have an API where you can query software names based on version and it can tell you if you're missing any security-related commits.  I was wondering if it would be possible to set something up that could query it, maybe one page for the versions we have in Cauldron, and one for the versions in our latest stable release.

Maybe some place like repology.org would be a better place to set something like this up, which we could make a link to if it ever happens.  They currently have something similar here:
https://repology.org/projects/?inrepo=mageia_cauldron&vulnerable=1
Note You need to log in before you can comment on or make changes to this bug.