Removed version-based CVE information. (#240)

2025-06-25 12:04:32 +02:00 · 2024-09-26 13:15:58 -04:00
parent 3b8a75e407
commit 93b30b4258
24 changed files with 26 additions and 948 deletions
--- a/test/docker/expected_results/openssh_5.6p1_test4.json
+++ b/test/docker/expected_results/openssh_5.6p1_test4.json
@ -10,83 +10,7 @@
        "none",
        "zlib@openssh.com"
    ],
-    "cves": [
-        {
-            "cvssv2": 7.8,
-            "description": "command injection via anomalous argument transfers",
-            "name": "CVE-2020-15778"
-        },
-        {
-            "cvssv2": 5.3,
-            "description": "enumerate usernames due to timing discrepancies",
-            "name": "CVE-2018-15473"
-        },
-        {
-            "cvssv2": 5.3,
-            "description": "readonly bypass via sftp",
-            "name": "CVE-2017-15906"
-        },
-        {
-            "cvssv2": 5.3,
-            "description": "enumerate usernames via challenge response",
-            "name": "CVE-2016-20012"
-        },
-        {
-            "cvssv2": 5.5,
-            "description": "bypass command restrictions via crafted X11 forwarding data",
-            "name": "CVE-2016-3115"
-        },
-        {
-            "cvssv2": 5.0,
-            "description": "cause DoS via crafted network traffic (out of bounds read)",
-            "name": "CVE-2016-1907"
-        },
-        {
-            "cvssv2": 6.9,
-            "description": "privilege escalation via leveraging sshd uid",
-            "name": "CVE-2015-6564"
-        },
-        {
-            "cvssv2": 1.9,
-            "description": "conduct impersonation attack",
-            "name": "CVE-2015-6563"
-        },
-        {
-            "cvssv2": 5.8,
-            "description": "bypass environment restrictions via specific string before wildcard",
-            "name": "CVE-2014-2532"
-        },
-        {
-            "cvssv2": 7.5,
-            "description": "cause DoS via triggering error condition (memory corruption)",
-            "name": "CVE-2014-1692"
-        },
-        {
-            "cvssv2": 3.5,
-            "description": "leak data via debug messages",
-            "name": "CVE-2012-0814"
-        },
-        {
-            "cvssv2": 3.5,
-            "description": "cause DoS via large value in certain length field (memory consumption)",
-            "name": "CVE-2011-5000"
-        },
-        {
-            "cvssv2": 5.0,
-            "description": "cause DoS via large number of connections (slot exhaustion)",
-            "name": "CVE-2010-5107"
-        },
-        {
-            "cvssv2": 4.0,
-            "description": "cause DoS via crafted glob expression (CPU and memory consumption)",
-            "name": "CVE-2010-4755"
-        },
-        {
-            "cvssv2": 7.5,
-            "description": "bypass authentication check via crafted values",
-            "name": "CVE-2010-4478"
-        }
-    ],
+    "cves": [],
    "enc": [
        {
            "algorithm": "aes128-ctr",