New feed to import openeuler

cve-search / vulnerability-lookup

Vulnerability Lookup facilitates quick correlation of vulnerabilities from various sources, independent of vulnerability IDs, and streamlines the management of Coordinated Vulnerability Disclosure (CVD).

https://cve-search.github.io/vulnerability-lookup/

GNU Affero General Public License v3.0

71 stars 9 forks source link

New feed to import openeuler #23

Open adulau opened 5 months ago

adulau commented 5 months ago

https://repo.openeuler.org/security/data/cvrf/ (a cross-reference of CVE exist) - CVRF parser exists but it's indeed XML ;-)

Rafiot commented 5 months ago

so cvrf is old csaf: https://oasis-open.github.io/csaf-documentation/specification.html

And a practical open question: do we render the raw document on the website? If yes, how? And how do we generate the dumps? XML? some kind of conversions to json?

Also, this website doesn't let me figure out if and how anything was modified without re-fetching everything.