What kind of change does this PR introduce? (Bug fix, feature, docs update, ...)
Fixes version mismatches
What is the current behavior? (You can also link to an open issue here)
gnu:glibc can be matched with a string that sed fails to replace with gnu:glibc:version. Later on, in F20, glibc is ignored because of a "bad version format" and CVEs are not fetched
ISC DHCP client binaries match isc:dhcp_client product name. No CVE are found, whatever the version, since the NVD database uses isc:dhcp for the client, not isc:dhcp_client
What is the new behavior (if this is a feature change)? If possible add a screenshot.
Proper product:version is returned and corresponding CVEs are reported
Does this PR introduce a breaking change? (What changes might users need to make in their application due to this PR?)
Fixes version mismatches
gnu:glibc
can be matched with a string thatsed
fails to replace withgnu:glibc:version
. Later on, in F20,glibc
is ignored because of a "bad version format" and CVEs are not fetchedISC DHCP client binaries match
isc:dhcp_client
product name. No CVE are found, whatever the version, since the NVD database usesisc:dhcp
for the client, notisc:dhcp_client
Proper product:version is returned and corresponding CVEs are reported
No breaking change