Class VulnerabilityNote.Types.Detail (2.4.0)

public sealed class Detail : IMessage<VulnerabilityNote.Types.Detail>, IEquatable<VulnerabilityNote.Types.Detail>, IDeepCloneable<VulnerabilityNote.Types.Detail>, IBufferMessage, IMessage

A detail for a distro and package affected by this vulnerability and its associated fix (if one is available).

Inheritance

Object > VulnerabilityNote.Types.Detail

Namespace

Grafeas.V1

Assembly

Grafeas.V1.dll

Constructors

Detail()

public Detail()

Detail(VulnerabilityNote.Types.Detail)

public Detail(VulnerabilityNote.Types.Detail other)
Parameter
NameDescription
otherVulnerabilityNote.Types.Detail

Properties

AffectedCpeUri

public string AffectedCpeUri { get; set; }

Required. The CPE URI this vulnerability affects.

Property Value
TypeDescription
String

AffectedPackage

public string AffectedPackage { get; set; }

Required. The package this vulnerability affects.

Property Value
TypeDescription
String

AffectedVersionEnd

public Version AffectedVersionEnd { get; set; }

The version number at the end of an interval in which this vulnerability exists. A vulnerability can affect a package between version numbers that are disjoint sets of intervals (example: [1.0.0-1.1.0], [2.4.6-2.4.8] and [4.5.6-4.6.8]) each of which will be represented in its own Detail. If a specific affected version is provided by a vulnerability database, affected_version_start and affected_version_end will be the same in that Detail.

Property Value
TypeDescription
Version

AffectedVersionStart

public Version AffectedVersionStart { get; set; }

The version number at the start of an interval in which this vulnerability exists. A vulnerability can affect a package between version numbers that are disjoint sets of intervals (example: [1.0.0-1.1.0], [2.4.6-2.4.8] and [4.5.6-4.6.8]) each of which will be represented in its own Detail. If a specific affected version is provided by a vulnerability database, affected_version_start and affected_version_end will be the same in that Detail.

Property Value
TypeDescription
Version

Description

public string Description { get; set; }

A vendor-specific description of this vulnerability.

Property Value
TypeDescription
String

FixedCpeUri

public string FixedCpeUri { get; set; }

The distro recommended CPE URI to update to that contains a fix for this vulnerability. It is possible for this to be different from the affected_cpe_uri.

Property Value
TypeDescription
String

FixedPackage

public string FixedPackage { get; set; }

The distro recommended package to update to that contains a fix for this vulnerability. It is possible for this to be different from the affected_package.

Property Value
TypeDescription
String

FixedVersion

public Version FixedVersion { get; set; }

The distro recommended version to update to that contains a fix for this vulnerability. Setting this to VersionKind.MAXIMUM means no such version is yet available.

Property Value
TypeDescription
Version

IsObsolete

public bool IsObsolete { get; set; }

Whether this detail is obsolete. Occurrences are expected not to point to obsolete details.

Property Value
TypeDescription
Boolean

PackageType

public string PackageType { get; set; }

The type of package; whether native or non native (e.g., ruby gems, node.js packages, etc.).

Property Value
TypeDescription
String

SeverityName

public string SeverityName { get; set; }

The distro assigned severity of this vulnerability.

Property Value
TypeDescription
String

Source

public string Source { get; set; }

The source from which the information in this Detail was obtained.

Property Value
TypeDescription
String

SourceUpdateTime

public Timestamp SourceUpdateTime { get; set; }

The time this information was last changed at the source. This is an upstream timestamp from the underlying information source - e.g. Ubuntu security tracker.

Property Value
TypeDescription
Timestamp

Vendor

public string Vendor { get; set; }

The name of the vendor of the product.

Property Value
TypeDescription
String