STRLCPY/linux-smart-enumeration

Merge pull request #61 from exploide/cve-2021-4034-fedora
```
CVE-2021-4034: Detect fixed versions for Fedora
```
Diego Blanco committed with GitHub 2 years ago

5a2bde4d

2 parents
5fda30c3
7692a3ad

Revision indexing in progress... (symbol navigation in revisions will be accurate after indexed)

■ ■ ■ ■ ■ ■ ■

cve/cve-2021-4034.sh

		skipped 107 lines
108	108		;;
109	109		esac
110	110		;;
111		-	#TODO: Add Fedora, RedHat and other distros, although their info about patches is very poor
	111	+	fedora)
	112	+	[ -r "/etc/os-release" ] && distro_release=$(grep -E '^VERSION_ID=' /etc/os-release \| cut -f2 -d=)
	113	+	case "$distro_release" in
	114	+	34)
	115	+	package_fixed="0.117-3.fc34.2"
	116	+	;;
	117	+	35)
	118	+	package_fixed="0.120-1.fc35.1"
	119	+	;;
	120	+	esac
	121	+	;;
	122	+	#TODO: Add RedHat and other distros, although their info about patches is very poor
112	123		esac
113	124		if [ -n "$package_fixed" ] && [ -n "$package_version" ] && ! lse_is_version_bigger "$package_fixed" "$package_version"; then
114	125		# Not Vulnerable
		skipped 6 lines

■ ■ ■ ■ ■ ■

lse.sh

		skipped 625 lines
626	626		centos\|redhat\|fedora\|opsuse\|rocky)
627	627		pkg_version=`rpm -q "$pkg_name" 2>/dev/null`
628	628		pkg_version="${pkg_version##$pkg_name-}"
	629	+	pkg_version=`echo $pkg_version \| sed -E 's/\.(aarch64\|armv7hl\|i686\|noarch\|ppc64le\|s390x\|x86_64)$//'`
629	630		;;
630	631		*)
631	632		return 2
		skipped 900 lines