[scarthgap] vulnerabilities: update nvdcve file name

Message ID	20251011213455.4168626-1-peter.marko@siemens.com
State	Under Review
Headers	show Return-Path: <peter.marko@siemens.com> ip: 185.136.64.226, mailfrom: fm-256628-2025101121350893bc802b71000207de-zdngct@rts-flowmailer.siemens.com) From: Peter Marko <peter.marko@siemens.com> To: docs@lists.yoctoproject.org Cc: Peter Marko <peter.marko@siemens.com> Subject: [scarthgap][PATCH] vulnerabilities: update nvdcve file name Date: Sat, 11 Oct 2025 23:34:55 +0200 Message-Id: <20251011213455.4168626-1-peter.marko@siemens.com> MIME-Version: 1.0 Content-Transfer-Encoding: 8bit Feedback-ID: 519:519-256628:519-21489:flowmailer
Series	[scarthgap] vulnerabilities: update nvdcve file name \| expand [scarthgap] vulnerabilities: update nvdcve file name

Message ID

20251011213455.4168626-1-peter.marko@siemens.com

State

Under Review

Headers

From: Peter Marko <peter.marko@siemens.com>
To: docs@lists.yoctoproject.org
Cc: Peter Marko <peter.marko@siemens.com>
Subject: [scarthgap][PATCH] vulnerabilities: update nvdcve file name
Date: Sat, 11 Oct 2025 23:34:55 +0200
Message-Id: <20251011213455.4168626-1-peter.marko@siemens.com>
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit
Feedback-ID: 519:519-256628:519-21489:flowmailer

Series

[scarthgap] vulnerabilities: update nvdcve file name | expand

Commit Message

Peter Marko Oct. 11, 2025, 9:34 p.m. UTC

From: Peter Marko <peter.marko@siemens.com>

The filename is outdated as its version was already bumped and there are
also different files for different feed choices.
Use glob to match any available file.

Signed-off-by: Peter Marko <peter.marko@siemens.com>
---
 documentation/dev-manual/vulnerabilities.rst | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/documentation/dev-manual/vulnerabilities.rst b/documentation/dev-manual/vulnerabilities.rst
index f5f9fe3a0..22b85d53d 100644
--- a/documentation/dev-manual/vulnerabilities.rst
+++ b/documentation/dev-manual/vulnerabilities.rst
@@ -314,7 +314,7 @@  products defined in :term:`CVE_PRODUCT`. Then, for each found CVE:
 The CVE database is stored in :term:`DL_DIR` and can be inspected using
 ``sqlite3`` command as follows::
 
-   sqlite3 downloads/CVE_CHECK/nvdcve_1.1.db .dump | grep CVE-2021-37462
+   sqlite3 downloads/CVE_CHECK/nvd*.db .dump | grep CVE-2021-37462
 
 When analyzing CVEs, it is recommended to:

[scarthgap] vulnerabilities: update nvdcve file name

Commit Message

Patch