Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Fix broken CVE reference and update links #7775

Merged
merged 1 commit into from Jan 2, 2017
Merged

Fix broken CVE reference and update links #7775

merged 1 commit into from Jan 2, 2017

Conversation

wvu
Copy link
Contributor

@wvu wvu commented Jan 2, 2017
edited

Prefer HTTPS over HTTP, too.

Closes #7773.

@wvu
Fix broken CVE reference and update links
4264521 
Prefer HTTPS over HTTP, too.
@wvu wvu self-assigned this Jan 2, 2017
@wvu wvu merged commit 4264521 into rapid7:master Jan 2, 2017
wvu added a commit that referenced this pull request Jan 2, 2017
@wvu
Land #7775, CVE ref fix and other ref updates
640aa33
@wvu wvu deleted the beug/references branch January 2, 2017 05:28
wvu
wvu commented Jan 2, 2017
View reviewed changes
lib/msf/core/module/reference.rb
@@ -96,17 +96,17 @@ def initialize(in_ctx_id = 'Unknown', in_ctx_val = '')
self.ctx_val = in_ctx_val

if (in_ctx_id == 'CVE')
self.site = "http://cvedetails.com/cve/#{in_ctx_val}/"
self.site = "https://cvedetails.com/cve/CVE-#{in_ctx_val}/"
Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Link changed to CVE- prefix. Also supports HTTPS.

wvu
wvu commented Jan 2, 2017
View reviewed changes
lib/msf/core/module/reference.rb
elsif (in_ctx_id == 'CWE')
self.site = "https://cwe.mitre.org/data/definitions/#{in_ctx_val}.html"
elsif (in_ctx_id == 'BID')
self.site = "http://www.securityfocus.com/bid/#{in_ctx_val}"
elsif (in_ctx_id == 'MSB')
self.site = "http://technet.microsoft.com/en-us/security/bulletin/#{in_ctx_val}"
self.site = "https://technet.microsoft.com/en-us/library/security/#{in_ctx_val}"
Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Old link redirects to new. Also supports HTTPS.

wvu
wvu commented Jan 2, 2017
View reviewed changes
lib/msf/core/module/reference.rb
elsif (in_ctx_id == 'EDB')
self.site = "https://www.exploit-db.com/exploits/#{in_ctx_val}"
elsif (in_ctx_id == 'US-CERT-VU')
self.site = "http://www.kb.cert.org/vuls/id/#{in_ctx_val}"
self.site = "https://www.kb.cert.org/vuls/id/#{in_ctx_val}"
Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Supports HTTPS.

@tdoan-r7
Copy link
Contributor

Release Notes

This fix resolves broken CVE reference and update links.

@tdoan-r7 tdoan-r7 added the rn-fix release notes fix label Jan 11, 2017
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees

@wvu wvu

Labels
bug library rn-fix release notes fix
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
2 participants
@wvu @tdoan-r7