vulnerablecode
vulnerablecode copied to clipboard
nexB
OpenSSL importer fails due to 404
Hi Team,
I have noticed that OpenSSL importer fails due to 404 page not found:
./manage.py import vulnerabilities.importers.openssl.OpensslImporter
Importing data using vulnerabilities.importers.openssl.OpensslImporter
Error while fetching https://www.openssl.org/news/vulnerabilities.xml: 404
Traceback (most recent call last):
File "/app/vulnerabilities/management/commands/import.py", line 70, in import_data
ImportRunner(importer).run()
File "/app/vulnerabilities/import_runner.py", line 62, in run
count = self.process_advisories(advisory_datas=advisory_datas, importer_name=importer_name)
File "/app/vulnerabilities/import_runner.py", line 105, in process_advisories
for data in advisory_datas:
File "/app/vulnerabilities/importers/openssl.py", line 51, in parse_vulnerabilities
root = DET.fromstring(xml_response)
File "/usr/local/lib/python3.9/site-packages/defusedxml/common.py", line 126, in fromstring
parser.feed(text)
File "/usr/local/lib/python3.9/xml/etree/ElementTree.py", line 1720, in feed
self.parser.Parse(data, False)
TypeError: a bytes-like object is required, not 'NoneType'
Failed to run importer vulnerabilities.importers.openssl.OpensslImporter. Continuing...
CommandError: 1 failed!: vulnerabilities.importers.openssl.OpensslImporter
