worklog.py: Add CVE links and a `security-updates` command. #2151

silkeh · 2024-04-05T22:00:19Z

Summary

Add links to CVEs mentioned in the commits to the update output.
Add a command for listing all updates that include security fixes.

Test Plan

$ ./common/Scripts/worklog.py security-updates "2024-03-29T17:45:11Z" --format=tty
5 security-updates:
wireshark 4.2.4-85 [@silkeh] [CVE-2024-2955]
capnproto 1.0.2-6 [@algent-al] [CVE-2023-48230]
golang 1.22.2-112 [@silkeh] [CVE-2023-45288]
xorg-server 21.1.12-100 [@EbonJaeger] [CVE-2024-31080, CVE-2024-31081, CVE-2024-31082, CVE-2024-31083]
xorg-xwayland 23.2.5-24 [@EbonJaeger] [CVE-2024-31080, CVE-2024-31081, CVE-2024-31083]

$ ./common/Scripts/worklog.py security-updates "2024-03-29T17:45:11Z" --format=md
5 security-updates:
- **wireshark** was updated to **4.2.4-85** ([@silkeh](https://github.com/getsolus/packages/commit/5ad8e37aa8fb9bba87e372e6fa432b3572e77da3)). Includes security fixes for [CVE-2024-2955](https://nvd.nist.gov/vuln/detail/CVE-2024-2955).
- **capnproto** was updated to **1.0.2-6** ([@algent-al](https://github.com/getsolus/packages/commit/7d0cc1e4bd84553d420e62b286601d2b12a8a472)). Includes security fixes for [CVE-2023-48230](https://nvd.nist.gov/vuln/detail/CVE-2023-48230).
- **golang** was updated to **1.22.2-112** ([@silkeh](https://github.com/getsolus/packages/commit/86bf291972087e9184bc4d9c9e1a97d87e37fb57)). Includes security fixes for [CVE-2023-45288](https://nvd.nist.gov/vuln/detail/CVE-2023-45288).
- **xorg-server** was updated to **21.1.12-100** ([@EbonJaeger](https://github.com/getsolus/packages/commit/2145a6ba683e5fa4b8070fa025056df3a2f656cd)). Includes security fixes for [CVE-2024-31080](https://nvd.nist.gov/vuln/detail/CVE-2024-31080), [CVE-2024-31081](https://nvd.nist.gov/vuln/detail/CVE-2024-31081), [CVE-2024-31082](https://nvd.nist.gov/vuln/detail/CVE-2024-31082), [CVE-2024-31083](https://nvd.nist.gov/vuln/detail/CVE-2024-31083).
- **xorg-xwayland** was updated to **23.2.5-24** ([@EbonJaeger](https://github.com/getsolus/packages/commit/7befcce416bbdecf1a5feb8afbdae82567a9f389)). Includes security fixes for [CVE-2024-31080](https://nvd.nist.gov/vuln/detail/CVE-2024-31080), [CVE-2024-31081](https://nvd.nist.gov/vuln/detail/CVE-2024-31081), [CVE-2024-31083](https://nvd.nist.gov/vuln/detail/CVE-2024-31083).

$ ./common/Scripts/worklog.py security-updates "2024-03-29T17:45:11Z" --format=html
<p>5 security-updates:</p>
<ul>
<li><strong>wireshark</strong> was updated to <strong>4.2.4-85</strong> (<a href="https://github.com/getsolus/packages/commit/5ad8e37aa8fb9bba87e372e6fa432b3572e77da3">@silkeh</a>). Includes security fixes for <a href="https://nvd.nist.gov/vuln/detail/CVE-2024-2955">CVE-2024-2955</a>.</li>
<li><strong>capnproto</strong> was updated to <strong>1.0.2-6</strong> (<a href="https://github.com/getsolus/packages/commit/7d0cc1e4bd84553d420e62b286601d2b12a8a472">@algent-al</a>). Includes security fixes for <a href="https://nvd.nist.gov/vuln/detail/CVE-2023-48230">CVE-2023-48230</a>.</li>
<li><strong>golang</strong> was updated to <strong>1.22.2-112</strong> (<a href="https://github.com/getsolus/packages/commit/86bf291972087e9184bc4d9c9e1a97d87e37fb57">@silkeh</a>). Includes security fixes for <a href="https://nvd.nist.gov/vuln/detail/CVE-2023-45288">CVE-2023-45288</a>.</li>
<li><strong>xorg-server</strong> was updated to <strong>21.1.12-100</strong> (<a href="https://github.com/getsolus/packages/commit/2145a6ba683e5fa4b8070fa025056df3a2f656cd">@EbonJaeger</a>). Includes security fixes for <a href="https://nvd.nist.gov/vuln/detail/CVE-2024-31080">CVE-2024-31080</a>, <a href="https://nvd.nist.gov/vuln/detail/CVE-2024-31081">CVE-2024-31081</a>, <a href="https://nvd.nist.gov/vuln/detail/CVE-2024-31082">CVE-2024-31082</a>, <a href="https://nvd.nist.gov/vuln/detail/CVE-2024-31083">CVE-2024-31083</a>.</li>
<li><strong>xorg-xwayland</strong> was updated to <strong>23.2.5-24</strong> (<a href="https://github.com/getsolus/packages/commit/7befcce416bbdecf1a5feb8afbdae82567a9f389">@EbonJaeger</a>). Includes security fixes for <a href="https://nvd.nist.gov/vuln/detail/CVE-2024-31080">CVE-2024-31080</a>, <a href="https://nvd.nist.gov/vuln/detail/CVE-2024-31081">CVE-2024-31081</a>, <a href="https://nvd.nist.gov/vuln/detail/CVE-2024-31083">CVE-2024-31083</a>.</li>
</ul>

Checklist

~~Package was built and tested against unstable~~

**Summary** Add links to CVEs mentioned in the commits to the update output.

**Summary** Add a command for listing all updates that include security fixes.

EbonJaeger

The output looks good for my uses. Thanks!

silkeh added 2 commits April 5, 2024 23:52

worklog.py: Add CVEs to the update output

89e468b

**Summary** Add links to CVEs mentioned in the commits to the update output.

worklog.py: Add security-updates command

95a6bd3

**Summary** Add a command for listing all updates that include security fixes.

silkeh force-pushed the worklog-cve branch from 66eb16f to 95a6bd3 Compare April 5, 2024 22:05

silkeh requested review from EbonJaeger and TraceyC77 April 5, 2024 22:45

EbonJaeger approved these changes Apr 5, 2024

View reviewed changes

ermo merged commit fce274f into main Apr 17, 2024
2 checks passed

ermo deleted the worklog-cve branch April 17, 2024 18:55

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

worklog.py: Add CVE links and a `security-updates` command. #2151

worklog.py: Add CVE links and a `security-updates` command. #2151

silkeh commented Apr 5, 2024

EbonJaeger left a comment

worklog.py: Add CVE links and a security-updates command. #2151

worklog.py: Add CVE links and a security-updates command. #2151

Conversation

silkeh commented Apr 5, 2024

EbonJaeger left a comment

Choose a reason for hiding this comment

worklog.py: Add CVE links and a `security-updates` command. #2151

worklog.py: Add CVE links and a `security-updates` command. #2151