Package cve-check-tool: Information
Source package: cve-check-tool
Version: 5.6.4-alt3.git.cbc2d0e
Build time: Mar 12, 2022, 05:31 AM
Category: Other
Report package bugLicense: GPLv2
Summary: Command line tool for checking known (public) CVEs
Description:
The tool will identify potentially vunlnerable software packages within Linux distributions through version matching. Where possible it will also seek to determine (through a distribution implemention) if a vulnerability has been addressed by way of a patch.
List of rpms provided by this srpm:
cve-check-tool (e2kv6, e2kv5, e2kv4, e2k)
cve-check-tool-debuginfo (e2kv6, e2kv5, e2kv4, e2k)
cve-check-tool (e2kv6, e2kv5, e2kv4, e2k)
cve-check-tool-debuginfo (e2kv6, e2kv5, e2kv4, e2k)
Maintainer: Slava Aseev
Last changed
July 30, 2019 Slava Aseev 5.6.4-alt3.git.cbc2d0e
- Migrate to NVD JSON Feed 1.0 (XML Feeds go away in October 9th of 2019)
- Common improvements:
+ Replace GLib 'g_str_hash' by 't1ha' hash function because the first
one has too many collisions for CVE dataset (mainly due to small
hash length)
+ Add optional runtime hash collision check (-H option)
+ Add executable for hash collision checking
+ Add optional feature for dropping '-dev' 'lib' and abi suffixes and
prefixes from package names (-F option)
- Rpm plugin improvements:
+ Add scan of changelog section for finding already fixed CVEs
+ Fix mistake with patch numeration
+ Fix evaluation of rpm macrosesAug. 29, 2018 Grigory Ustinov 5.6.4-alt2.git.cbc2d0e.1
- NMU: Rebuild with new openssl 1.1.0.
April 10, 2018 Alexandr Antonov 5.6.4-alt2.git.cbc2d0e
- Fixed field line breaks in a readable form (Closes: 33940)