diff --git a/cve_bin_tool/checkers/__init__.py b/cve_bin_tool/checkers/__init__.py index 98ef612cf9..fb1c232851 100644 --- a/cve_bin_tool/checkers/__init__.py +++ b/cve_bin_tool/checkers/__init__.py @@ -60,6 +60,7 @@ "exim", "exiv2", "expat", + "faad2", "fastd", "ffmpeg", "file", diff --git a/cve_bin_tool/checkers/faad2.py b/cve_bin_tool/checkers/faad2.py new file mode 100644 index 0000000000..9385830808 --- /dev/null +++ b/cve_bin_tool/checkers/faad2.py @@ -0,0 +1,23 @@ +# Copyright (C) 2022 Orange +# SPDX-License-Identifier: GPL-3.0-or-later + + +""" +CVE checker for faad2: + +https://www.cvedetails.com/product/38454/Audiocoding-Freeware-Advanced-Audio-Decoder-2.html?vendor_id=8551 + +""" +from __future__ import annotations + +from cve_bin_tool.checkers import Checker + + +class Faad2Checker(Checker): + CONTAINS_PATTERNS: list[str] = [] + FILENAME_PATTERNS: list[str] = [] + VERSION_PATTERNS = [ + r"faad-([0-9]+\.[0-9]+\.[0-9]+)", + r"TAG\r?\n([0-9]+\.[0-9]+\.[0-9]+)[A-Za-z \r?\n]+Copyright 2002-2004: Ahead Software AG", + ] + VENDOR_PRODUCT = [("audiocoding", "freeware_advanced_audio_decoder_2")] diff --git a/test/condensed-downloads/faad2-2.10.1-2-omv4090.aarch64.rpm.tar.gz b/test/condensed-downloads/faad2-2.10.1-2-omv4090.aarch64.rpm.tar.gz new file mode 100644 index 0000000000..5fc7629418 Binary files /dev/null and b/test/condensed-downloads/faad2-2.10.1-2-omv4090.aarch64.rpm.tar.gz differ diff --git a/test/condensed-downloads/libfaad2_2.10.0-1_amd64.deb.tar.gz b/test/condensed-downloads/libfaad2_2.10.0-1_amd64.deb.tar.gz new file mode 100644 index 0000000000..edd6777613 Binary files /dev/null and b/test/condensed-downloads/libfaad2_2.10.0-1_amd64.deb.tar.gz differ diff --git a/test/condensed-downloads/libfaad2_2.8.6-1_x86_64.ipk.tar.gz b/test/condensed-downloads/libfaad2_2.8.6-1_x86_64.ipk.tar.gz new file mode 100644 index 0000000000..7fccb1a346 Binary files /dev/null and b/test/condensed-downloads/libfaad2_2.8.6-1_x86_64.ipk.tar.gz differ diff --git a/test/test_data/faad2.py b/test/test_data/faad2.py new file mode 100644 index 0000000000..86ea85550f --- /dev/null +++ b/test/test_data/faad2.py @@ -0,0 +1,39 @@ +# Copyright (C) 2022 Orange +# SPDX-License-Identifier: GPL-3.0-or-later + +mapping_test_data = [ + { + "product": "freeware_advanced_audio_decoder_2", + "version": "2.10.1", + "version_strings": [ + "faad-2.10.1", + ], + }, + { + "product": "freeware_advanced_audio_decoder_2", + "version": "2.8.6", + "version_strings": [ + "TAG\n2.8.6\n Copyright 2002-2004: Ahead Software AG", + ], + }, +] +package_test_data = [ + { + "url": "http://rpmfind.net/linux/openmandriva/cooker/repository/aarch64/restricted/release/", + "package_name": "faad2-2.10.1-2-omv4090.aarch64.rpm", + "product": "freeware_advanced_audio_decoder_2", + "version": "2.10.1", + }, + { + "url": "http://ftp.fr.debian.org/debian/pool/main/f/faad2/", + "package_name": "libfaad2_2.10.0-1_amd64.deb", + "product": "freeware_advanced_audio_decoder_2", + "version": "2.10.0", + }, + { + "url": "https://downloads.openwrt.org/releases/18.06.1/packages/x86_64/packages/", + "package_name": "libfaad2_2.8.6-1_x86_64.ipk", + "product": "freeware_advanced_audio_decoder_2", + "version": "2.8.6", + }, +]