From: Rhonda D'Vine <rhonda@deb.at>
Date: Fri, 9 Jul 2021 07:24:41 +0000 (+0200)
Subject: Only check deb sources.list entries
X-Git-Url: https://git.proxmox.com/?p=pve-manager.git;a=commitdiff_plain;h=41a2c7ab37f0e6f4d4e1ce7617fbf2284dc3039e

Only check deb sources.list entries

The check isn't specific enough, it also catches deb-src entries and
would give a false impression of security in certain circumstances, or
lead to false negatives in case you have a deb-src entry for
buster/updates even though you have bullseye-security in just the next
line -- something that isn't that uncommon for developers.

Signed-off-by: Rhonda D'Vine <rhonda@deb.at>
Reviewed-by: Fabian Ebner <f.ebner@proxmox.com>
(cherry picked from commit f00ebb3699621c795a515151b1f2632c731ed556)
Signed-off-by: Thomas Lamprecht <t.lamprecht@proxmox.com>
---

diff --git a/PVE/CLI/pve6to7.pm b/PVE/CLI/pve6to7.pm
index a3c791fb..2134428d 100644
--- a/PVE/CLI/pve6to7.pm
+++ b/PVE/CLI/pve6to7.pm
@@ -1010,7 +1010,7 @@ sub check_security_repo {
 
 	    ($line) = split(/#/, $line);
 
-	    next if $line !~ m/^deb/; # is case sensitive
+	    next if $line !~ m/^deb[[:space:]]/; # is case sensitive
 
 	    my $suite;