From hamish.tk@googlemail.com@21:1/5 to All on Tue Feb 23 11:15:30 2016
Has anyone found a good reliable (And easy to parse) method of mapping LPP/eFixes to CVE;s? I want to automate some aspects of fall finding... We have a solution for Linux that uses the errata data from Satellite/Spacewalk to map fixes to CVE's... But
for AIX, I'm coming up against a blank wall that doesn't include having to parse free-form text from multiple sources (Not what I want to do).
What I really want is a feed from IBM of 'This LPP fixes these CVEs'.