ROX-18363: Fix RHEL CVSS equals 0 even after update (#1258)

Author: connorgorman

database/pgsql/rhelv2_vulnerability.go

@@ -10,6 +10,7 @@ import (
 	"context"
 	"crypto/md5"
 	"database/sql"
+	"sort"
 	"time"
 
 	"github.com/lib/pq"
@@ -216,6 +217,11 @@ func (pgSQL *pgSQL) GetRHELv2Vulnerabilities(records []*database.RHELv2Record) (
 
 			addedVulns := uniqueVulns[recordID]
 
+			// Order the vulns in terms of updated first so that if we have multiple of the same vulns
+			// the ones with the latest update time will be used
+			sort.SliceStable(matchedVulns, func(i, j int) bool {
+				return matchedVulns[i].Updated.After(matchedVulns[j].Updated)
+			})
 			for _, matched := range matchedVulns {
 				if addedVulns.Add(matched.Name) {
 					vulnMap[recordID] = append(vulnMap[recordID], matched)