intel / cve-bin-tool

The CVE Binary Tool helps you determine if your system includes known vulnerabilities. You can scan binaries for over 200 common, vulnerable components (openssl, libpng, libxml2, expat and others), or if you know the components used, you can get a list of known vulnerabilities associated with an SBOM or a list of components and versions.

https://cve-bin-tool.readthedocs.io/en/latest/

GNU General Public License v3.0

1.19k stars 457 forks source link

feat(checker): add mp4v2 checker #4380

Closed ffontaine closed 3 weeks ago

ffontaine commented 1 month ago

windows_fixup must be moved to util.py to reuse this function in test_condensed_downloads.py

ffontaine commented 1 month ago

I don't know how to fix it and unfortunately I didn't find other mp4v2 binary packages on other distributions (debian, etc.)

terriko commented 1 month ago

I think it'll take a change in how we build filenames from the urls in make_condensed_from_download. I believe we need to run the filename through a filter before we make/access the local file. I probably won't get to it until after the 3.4 release is done, but maybe I can file an issue or something now.

terriko commented 3 weeks ago

4418 should have fixed this, so I'll update the branch and let the tests re-run.