Closed ryran closed 7 years ago
Not required, but it could be useful, especially for superseded IAVMs (one the underlying api supports those).
Implemented in forthcoming version, e.g.:
$ rhsecapi --iava 2016-A-0287 -i 2016-A-0309 --urls
[NOTICE ] rhsda: Valid Red Hat IAVA results retrieved: 2 of 2
[NOTICE ] rhsda: Number of CVEs mapped from retrieved IAVAs: 5
2016-A-0287 (https://access.redhat.com/labs/securitydataapi/iava?number=2016-A-0287)
TITLE : Multiple Vulnerabilities in Oracle Enterprise Manager
SEVERITY : CAT I
ID : 140611
CVES :
CVE-2015-7940 (https://access.redhat.com/security/cve/CVE-2015-7940)
CVE-2016-2107 (https://access.redhat.com/security/cve/CVE-2016-2107)
CVE-2016-4979 (https://access.redhat.com/security/cve/CVE-2016-4979)
CVE-2016-5604 (https://access.redhat.com/security/cve/CVE-2016-5604)
2016-A-0309 (https://access.redhat.com/labs/securitydataapi/iava?number=2016-A-0309)
TITLE : ISC BIND Remote Denial of Service Vulnerability
SEVERITY : CAT I
ID : 140634
CVES :
CVE-2016-8864 (https://access.redhat.com/security/cve/CVE-2016-8864)
Fixed in rc8
Seems unlikely. Need feedback from users.