/rhsecapi

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

implement new API search-cve-by-product capability #63

Closed
ryran opened this Issue Jan 5, 2017 · 1 comment

Comments

Assignees

@ryran ryran

Labels
Projects
None yet
Milestone
No milestone
1 participant
@ryran
@ryran
Owner

ryran commented Jan 5, 2017

As with /iava endpoint, the API docs haven't been updated yet, but a new feature was just added today to the /cve endpoint: listing by product=REGEX.

@ryran ryran added the enhancement label Jan 5, 2017

@ryran ryran self-assigned this Jan 5, 2017

ryran added a commit that referenced this issue Jan 5, 2017

@ryran
implement #63: add --q-product option to search by product_name
Verified
This commit was signed with a verified signature.
@ryran ryran Ryan Sawhill Aroha
GPG key ID: FBA472A74C4FFD02 Learn about signing commits
c516993

ryran added a commit that referenced this issue Jan 5, 2017

@ryran
Merge pull request #64 from ryran/new-search-by-product 
implement #63: add --q-product option to search by product_name
8e83d11
@ryran

This comment has been minimized.

Show comment
Hide comment
@ryran

ryran Jan 5, 2017

Owner 
$ rhsecapi --help | grep -A5 -- ' --q-product'
  --q-product PRODUCT   Narrow down results by product name via case-
                        insensitive regex (e.g.: 'linux 7' or openstack
                        platform [89]'); the API checks this against the
                        'FIXED_RELEASES' field so will only match CVEs where
                        PRODUCT matches the 'product_name' of some released
                        errata

$ rhsecapi --q-product 'linux [67]' --q-package glibc
[NOTICE ] rhsda: 37 CVEs found with search query

CVE ID         PUB DATE    BUGZILLA  SEVERITY   CVSS2  CVSS3  RHSAS  PKGS
CVE-2016-3075  2016-03-29  1321866   low        3.7    4.5     1      1  
CVE-2015-7547  2016-02-16  1293532   critical   6.8            4      8  
CVE-2015-5277  2015-09-14  1262914   important  3.7            2      2  
CVE-2015-5229  2015-08-21  1256285   low        2.6            2      2  
CVE-2015-1781  2015-04-21  1199525   moderate   5.1            3      3  
CVE-2014-8121  2015-02-23  1165192   low        3.3            1      1  
CVE-2015-0235  2015-01-27  1183461   critical   6.8            5     10  
CVE-2013-7424  2015-01-27  1186614   moderate   5.1            2      2  
CVE-2014-7817  2014-11-20  1157689   moderate   3.6            2      2  
CVE-2014-6040  2014-08-28  1135841   moderate   2.1            2      2  
CVE-2014-5119  2014-07-14  1119128   important  6.9            2      7  
CVE-2014-0475  2014-07-09  1102353   moderate   6.0            1      3  
CVE-2015-1472  2014-02-21  1188235   low        2.6            2      2  
CVE-2015-1473  2014-02-21  1209105   low        2.6            2      2  
CVE-2013-4458  2013-10-22  1022280   low        4.3            1      1  
CVE-2013-7423  2013-09-12  1187109   moderate   1.2            4      4  
CVE-2013-4332  2013-08-20  1007545   moderate   4.4            2      2  
CVE-2013-4237  2013-08-11  995839    moderate   6.8            1      1  
CVE-2013-1914  2013-04-03  947882    low        4.3            2      2  
CVE-2013-0242  2013-01-29  905874    low        4.3            2      2  
CVE-2012-3480  2012-08-12  847715    moderate   4.4            4      3  
CVE-2012-3404  2012-07-11  833703    moderate   6.8            2      2  
CVE-2012-3406  2012-07-11  826943    moderate   6.8            4      3  
CVE-2012-3405  2012-07-11  833704    moderate   6.8            2      2  
CVE-2011-4609  2011-05-05  767299    low        3.3            3      3  
CVE-2012-6686  2011-04-13  1009643   moderate   4.3            2      2  
CVE-2011-1089  2011-03-03  688980    low        3.3            3      3  
CVE-2011-1658  2011-01-12  694873    low        6.2            2      2  
CVE-2011-0536  2011-01-11  667974    important  7.2            2      2  
CVE-2012-0864  2010-11-17  794766    moderate   6.8            4      3  
CVE-2010-3856  2010-10-22  645672    important  7.2            2      2  
CVE-2010-3847  2010-10-18  643306    important  7.2            2      2  
CVE-2011-1095  2010-08-11  625893    low        3.7            3      3  
CVE-2011-1071  2010-08-05  681054    low        5.1            3      3  
CVE-2011-1659  2010-08-05  681054    low        5.1            3      3  
CVE-2009-5064  2009-10-26  692393    low        3.7            3      3  
CVE-2009-5029  2009-06-01  761245    moderate   6.5            3      3
Owner

ryran commented Jan 5, 2017 

$ rhsecapi --help | grep -A5 -- ' --q-product'
  --q-product PRODUCT   Narrow down results by product name via case-
                        insensitive regex (e.g.: 'linux 7' or openstack
                        platform [89]'); the API checks this against the
                        'FIXED_RELEASES' field so will only match CVEs where
                        PRODUCT matches the 'product_name' of some released
                        errata

$ rhsecapi --q-product 'linux [67]' --q-package glibc
[NOTICE ] rhsda: 37 CVEs found with search query

CVE ID         PUB DATE    BUGZILLA  SEVERITY   CVSS2  CVSS3  RHSAS  PKGS
CVE-2016-3075  2016-03-29  1321866   low        3.7    4.5     1      1  
CVE-2015-7547  2016-02-16  1293532   critical   6.8            4      8  
CVE-2015-5277  2015-09-14  1262914   important  3.7            2      2  
CVE-2015-5229  2015-08-21  1256285   low        2.6            2      2  
CVE-2015-1781  2015-04-21  1199525   moderate   5.1            3      3  
CVE-2014-8121  2015-02-23  1165192   low        3.3            1      1  
CVE-2015-0235  2015-01-27  1183461   critical   6.8            5     10  
CVE-2013-7424  2015-01-27  1186614   moderate   5.1            2      2  
CVE-2014-7817  2014-11-20  1157689   moderate   3.6            2      2  
CVE-2014-6040  2014-08-28  1135841   moderate   2.1            2      2  
CVE-2014-5119  2014-07-14  1119128   important  6.9            2      7  
CVE-2014-0475  2014-07-09  1102353   moderate   6.0            1      3  
CVE-2015-1472  2014-02-21  1188235   low        2.6            2      2  
CVE-2015-1473  2014-02-21  1209105   low        2.6            2      2  
CVE-2013-4458  2013-10-22  1022280   low        4.3            1      1  
CVE-2013-7423  2013-09-12  1187109   moderate   1.2            4      4  
CVE-2013-4332  2013-08-20  1007545   moderate   4.4            2      2  
CVE-2013-4237  2013-08-11  995839    moderate   6.8            1      1  
CVE-2013-1914  2013-04-03  947882    low        4.3            2      2  
CVE-2013-0242  2013-01-29  905874    low        4.3            2      2  
CVE-2012-3480  2012-08-12  847715    moderate   4.4            4      3  
CVE-2012-3404  2012-07-11  833703    moderate   6.8            2      2  
CVE-2012-3406  2012-07-11  826943    moderate   6.8            4      3  
CVE-2012-3405  2012-07-11  833704    moderate   6.8            2      2  
CVE-2011-4609  2011-05-05  767299    low        3.3            3      3  
CVE-2012-6686  2011-04-13  1009643   moderate   4.3            2      2  
CVE-2011-1089  2011-03-03  688980    low        3.3            3      3  
CVE-2011-1658  2011-01-12  694873    low        6.2            2      2  
CVE-2011-0536  2011-01-11  667974    important  7.2            2      2  
CVE-2012-0864  2010-11-17  794766    moderate   6.8            4      3  
CVE-2010-3856  2010-10-22  645672    important  7.2            2      2  
CVE-2010-3847  2010-10-18  643306    important  7.2            2      2  
CVE-2011-1095  2010-08-11  625893    low        3.7            3      3  
CVE-2011-1071  2010-08-05  681054    low        5.1            3      3  
CVE-2011-1659  2010-08-05  681054    low        5.1            3      3  
CVE-2009-5064  2009-10-26  692393    low        3.7            3      3  
CVE-2009-5029  2009-06-01  761245    moderate   6.5            3      3

@ryran ryran closed this Jan 5, 2017

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment