Adding CVE extractor for MySQL and MariaDB

build/updateCVElist.pl

@@ -0,0 +1,54 @@
+#!/usr/bin/perl
+use warnings;
+use strict;
+use WWW::Mechanize::GZip;
+use File::Util;
+my $verbose;
+sub AUTOLOAD {
+    use vars qw($AUTOLOAD);
+    my $cmd = $AUTOLOAD;
+    $cmd=~s/.*:://;
+    print  "\n","*" x 60, "\n* Catching system call : $cmd \n", "*"x60  if defined $verbose;
+    print "\nExecution : \t", $cmd, " ",  join " ", @_  if defined $verbose;
+    my $outp=`$cmd @_ 2>&1`;
+    my $rc=$?;
+    print "\nResult    : \t$outp",   if defined $verbose;
+    print "Code        : \t", $rc, "\n"  if defined $verbose;
+    return $rc;
+}
+
+my $mech = WWW::Mechanize->new();
+$mech->agent('Mozilla/5.0 (Windows NT 6.1; WOW64; rv:41.0) Gecko/20100101 Firefox/41.0');
+#$mech->proxy( ['http'], 'http://10.236.240.71:3128' );
+#$mech->proxy( ['https'], 'http://10.236.240.71:3128' );
+$mech->env_proxy;
+
+
+$mech->ssl_opts( 'verify_hostname' => 0 ); 
+
+
+$mech->requests_redirectable(['GET', 'POST', 'HEAD']);
+
+
+$mech->add_handler("request_send", sub { print '#'x80,"\nSEND REQUEST:\n"; shift->dump; print '#'x80,"\n";return } ) if  defined $verbose;
+$mech->add_handler("response_done", sub { print '#'x80,"\nDONE RESPONSE:\n"; shift->dump; print '#'x80,"\n"; return }) if  defined $verbose;
+$mech->add_handler("response_redirect" => sub { print '#'x80,"\nREDIRECT RESPONSE:\n"; shift->dump; print '#'x80,"\n"; return }) if  defined $verbose;
+
+
+my $url = 'http://cve.mitre.org/data/downloads/allitems.csv';
+my $resp=$mech->get($url);
+
+unlink 'cve.cvs' if -f 'cve.csv';
+$mech->save_content( "cve.csv" );
+
+my $f=File::Util->new('readlimit' => 100000000, 'use_flock'=>'false');
+my(@lines) = $f->load_file('cve.csv', '--as-lines');
+
+unlink 'vulnerability.csv' if -f 'vulnerability.csv';
+foreach my $line (@lines) {
+	if ($line =~ /(mysql|mariadb)/i and $line =~ /server/i) {
+		$f->write_file('file' => 'vulnerability.csv', 'content' => "$line\n", 'mode' => 'append');
+	}
+}
+unlink 'cve.cvs' if -f 'cve.csv';
+exit(0);