cve-check-tool icon indicating copy to clipboard operation
cve-check-tool copied to clipboard

Published 20 hours ago verified publisher icon clearlinux

Support the Debian package format

Open ikeydoherty opened this issue 9 years ago • 4 comments

This can quite simply be achieved via a transition to libarchive and then parsing the files. We'll need to know how to deal with both source and binary versions, for now we'll just use the source data (debian/control, etc,)

ikeydoherty avatar Jan 08 '16 16:01 ikeydoherty

Is this still on the roadmap? Is there a way to use cve-check-tool on debian-based systems?

jeremiah avatar Aug 07 '17 19:08 jeremiah

definitely, a nice to have. :+1:

phra avatar Mar 28 '18 13:03 phra

I want to write a plugin for debian packages. Can i get it from anywhere like its written for rpm in cve-check-tool. I want to check cve for debian source packages using this tool.

marium027 avatar Jul 02 '19 04:07 marium027

One more thing is for rpm we cve-check-tool used .spec file to scan a package whereas for debian which file will be used for the same purpose??

marium027 avatar Jul 02 '19 04:07 marium027