Workflow

Cvehound

Latest version: v1.2.0

Safety actively analyzes 622894 Python packages for vulnerabilities to keep your Python projects secure.

Scan your dependencies

Page 1 of 3

1.2.0

- Added +98 new CVE descriptions
- Added `--exclude <file>` option to exclude CVE-ids from the file from checks
- Added macOS support (it's possible to run the tool on the system)
- Added multiprocessing support
- Fixed ordering in reports (reproducibility)

1.1.0

- Added +69 new CVE descriptions
- Renamed `--config` option to `--kernel-config`
- Added `--config` option to support config.ini files with default settings
- Added `--metadata` option to support custom path to kernel_cves.json.gz
- Added `CVEHOUND_METADATA` environment to support custom path to
kernel_cves.json.gz
- Added file and line fields to json report
- Fixed kernel sources detection problem for kernels < 2.6.12-rc2
- Renamed CVE-2022-0886 (rejected) to CVE-2022-27666

1.0.9

- Added +43 new CVE descriptions
- Improved CVE-2019-15221 detection
- Fixed CVE-2020-25670 detection
- Fixed CVE-2020-25671 detection
- Added `--exclude` option to drop CVEs from check
- Added `--ignore-files` option to exclude kernel files from check
- Added `--list` options to list all known CVEs
- Improved `--help` output
- Removed strict lscpu dependency
- Fixed a crash when using `--exploit` option and metadata is not available
- Fixed a crash when using `--config` option and CVE is found in an .h file

1.0.8

- Added +52 new CVE descriptions
- Improved CVE-2014-1737 detection
- Improved CVE-2014-1738 detection

1.0.7

- Fixed `cvehound --cve all ...` invocation
- Changed `--report-strict` argument to `--check-strict`

1.0.6

- Restored support for python 3.5
- Fixed `cvehound --cve all ...` argument
- Added minimal coccinelle version to **CVE-2021-38209**, **CVE-2021-3656** rules
- Changed minimal coccinelle version from 1.0.8 to 1.0.7 in **CVE-2020-24490** rule
- Removed minimal coccinelle version for **CVE-2021-0342** rule
- Fixed setup.py by adding `lxml` dependency required for `cvehound_update_metadata`
- Fixed **CVE-2015-4700** false positive with `--all-files`
- Added `--cve [all, assigned, disputed]` modes. Changed default mode from _all_ to _assigned_
- Moved **CVE-2021-3178**, **CVE-2019-12382**, **CVE-2019-12455**, **CVE-2019-19770** to disputed mode
- Fixed coccinelle installation from git in CI
- Added coccinelle 1.0.4 to CI
- Added ChangeLog

Page 1 of 3

Links

Releases

Has known vulnerabilities

Next

© 2024 Safety CLI Cybersecurity Inc. All Rights Reserved.