Improved coverage for bzip2 (#597)

SinghHrmn · web-flow · commit 7962626fb31f · 2020-04-28T17:07:30.000-07:00
diff --git a/cve_bin_tool/checkers/bzip2.py b/cve_bin_tool/checkers/bzip2.py
@@ -23,7 +23,6 @@ def get_version(lines, filename):
     """
     regex = [r"bzip2-([0-9]+\.[0-9]+\.[0-9]+)"]
     version_info = dict()
-    version = "UNKNOWN"
     version = regex_find(lines, *regex)
 
     if "bzip2" in filename:
diff --git a/test/binaries/test-b.zip2-1.0.2_imprv_covrg.c b/test/binaries/test-b.zip2-1.0.2_imprv_covrg.c
@@ -0,0 +1,11 @@
+#include <stdio.h>
+
+int main() {
+	printf("This program is designed to test the cve-bin-tool checker.");
+	printf("It outputs a few strings normally associated with bzip2-1.0.2");
+	printf("They appear below this line.");
+	printf("------------------");
+	printf("bzip2-1.0.2");
+
+	return 0;
+}
diff --git a/test/test_scanner.py b/test/test_scanner.py
@@ -671,6 +671,22 @@ def _file_test(self, url, filename, package, version):
                     "CVE-2002-0760"
                 ],
             ),
+            (
+                "test-b.zip2-1.0.2_imprv_covrg.out",
+                "bzip2",
+                "1.0.2",
+                [
+                    # Check for known cves in this version
+                    "CVE-2005-0953",
+                    "CVE-2008-1372",
+                    "CVE-2010-0405",
+                    "CVE-2011-4089",
+                ],
+                [
+                    # Check to make sure an older CVE isn't included
+                    "CVE-2002-0760"
+                ],
+            ),
             (
                 "test-sqlite-3.12.2.out",
                 "sqlite",
