feat(checkers): Add SASL (#4757)

qmfrederik · web-flow · commit 59299851e820 · 2025-02-19T15:10:58.000-08:00
diff --git a/cve_bin_tool/checkers/__init__.py b/cve_bin_tool/checkers/__init__.py
@@ -335,6 +335,7 @@
     "runc",
     "rust",
     "samba",
+    "sasl",
     "sane_backends",
     "sdl",
     "seahorse",
diff --git a/cve_bin_tool/checkers/sasl.py b/cve_bin_tool/checkers/sasl.py
@@ -0,0 +1,25 @@
+# Copyright (C) 2025 Keysight Technologies
+# SPDX-License-Identifier: GPL-3.0-or-later
+
+
+"""
+CVE checker for Cyrus SASL
+References:
+https://www.cvedetails.com/vulnerability-list/vendor_id-1321/product_id-2309/Cyrus-Sasl.html
+"""
+from cve_bin_tool.checkers import Checker
+
+
+class SaslChecker(Checker):
+    CONTAINS_PATTERNS = []
+    FILENAME_PATTERNS = []
+    VERSION_PATTERNS = [
+        r"Cyrus SASL\r?\n([0-9]+\.[0-9]+\.[0-9]+)\r?\n",
+    ]
+    VENDOR_PRODUCT = [
+        ("cyrus", "sasl"),
+        ("cyrusimap", "cyrus-sasl"),
+        ("cyrusimap", "cyrus_sasl"),
+        ("carnegie_mellon_university", "cyrus-sasl"),
+        ("cmu", "cyrus-sasl"),
+    ]
diff --git a/test/condensed-downloads/libsasl2-2_2.1.28+dfsg1-5ubuntu3_amd64.deb.tar.gz b/test/condensed-downloads/libsasl2-2_2.1.28+dfsg1-5ubuntu3_amd64.deb.tar.gz
diff --git a/test/test_data/sasl.py b/test/test_data/sasl.py
@@ -0,0 +1,14 @@
+# Copyright (C) 2025 Keysight Technologies
+# SPDX-License-Identifier: GPL-3.0-or-later
+
+mapping_test_data = [
+    {"product": "sasl", "version": "2.1.28", "version_strings": ["Cyrus SASL\n2.1.28"]},
+]
+package_test_data = [
+    {
+        "url": "http://de.archive.ubuntu.com/ubuntu/pool/main/c/cyrus-sasl2/",
+        "package_name": "libsasl2-2_2.1.28+dfsg1-5ubuntu3_amd64.deb",
+        "product": "sasl",
+        "version": "2.1.28",
+    },
+]
