fix: update gettext checker

- Update gettext pattern to catch version in debian, fedora and openwrt
  packages
- Correctly catch 4 digits version (i.e. do not catch 0.19.8 instead of
  0.19.8.1)

Signed-off-by: Fabrice Fontaine <[email protected]>

Author: ffontaine

cve_bin_tool/checkers/gettext.py

@@ -16,5 +16,5 @@
 class GettextChecker(Checker):
     CONTAINS_PATTERNS: list[str] = []
     FILENAME_PATTERNS: list[str] = []
-    VERSION_PATTERNS = [r"/gettext-([0-9]+\.[0-9]+\.[0-9]+)(?:\.[0-9]+)?[-/]"]
+    VERSION_PATTERNS = [r"gettext[A-Za-z:\-\r\n]*([0-9]+\.[0-9]+\.[0-9]+(\.[0-9]+)?)"]
     VENDOR_PRODUCT = [("gnu", "gettext")]

test/condensed-downloads/gettext-0.20.1-r2.apk.tar.gz

@@ -4,7 +4,7 @@
 mapping_test_data = [
     {
         "product": "gettext",
-        "version": "0.19.8",
+        "version": "0.19.8.1",
         "version_strings": [
             "../../../gettext-0.19.8.1/gettext-tools/gnulib-lib/mbiter.h"
         ],
@@ -25,4 +25,22 @@
         "version": "0.22.3",
         "other_products": ["gcc"],
     },
+    {
+        "url": "http://rpmfind.net/linux/fedora/linux/development/rawhide/Everything/aarch64/os/Packages/g/",
+        "package_name": "gettext-0.23.1-2.fc42.aarch64.rpm",
+        "product": "gettext",
+        "version": "0.23.1",
+    },
+    {
+        "url": "http://ftp.debian.org/debian/pool/main/g/gettext/",
+        "package_name": "gettext_0.19.8.1-9_amd64.deb",
+        "product": "gettext",
+        "version": "0.19.8.1",
+    },
+    {
+        "url": "https://dl-cdn.alpinelinux.org/alpine/v3.11/main/x86_64/",
+        "package_name": "gettext-0.20.1-r2.apk",
+        "product": "gettext",
+        "version": "0.20.1",
+    },
 ]