Bug#942670: security-tracker: Fetching additional NVD feed information needs to switch to JSON feeds

To: Debian Bug Tracking System <submit@bugs.debian.org>
Subject: Bug#942670: security-tracker: Fetching additional NVD feed information needs to switch to JSON feeds
From: Salvatore Bonaccorso <carnil@debian.org>
Date: Sat, 19 Oct 2019 22:29:34 +0200
Message-id: <[🔎] 157151697478.9473.1970306512708583734.reportbug@eldamar.local>
Reply-to: Salvatore Bonaccorso <carnil@debian.org>, 942670@bugs.debian.org

Package: security-tracker
Severity: normal

As per 16th of october the NVD XML data feeds is disabled[1]. The
security-tracker uses this feed to daily get additional information on
CVEs (e.g. description).

The update-nvd and the used parser lib/python/nvd.py needs to be
switched to get and parse the JSON feeds[2].

 [1] https://nvd.nist.gov/General/News/XML-Vulnerability-Feed-Retirement
 [2] https://nvd.nist.gov/vuln/data-feeds#JSON_FEED

Regards,
Salvatore

Reply to:

Follow-Ups:
- Bug#942670: security-tracker: Fetching additional NVD feed information needs to switch to JSON feeds
  - From: Salvatore Bonaccorso <carnil@debian.org>

Prev by Date: External check
Next by Date: Bug#942670: security-tracker: Fetching additional NVD feed information needs to switch to JSON feeds
Previous by thread: Re: Glances: Unprotected XMLRPC server enabled by default
Next by thread: Bug#942670: security-tracker: Fetching additional NVD feed information needs to switch to JSON feeds
Index(es):
- Date
- Thread