intel
Checker list (to be added)
This is a list of checkers, which would be tested against the "Helper Script" and added. The list from #709 would also be tested. If individual issues are opened for any checker in the list, they would be mentioned besides them.
- [ ] gzip
- [ ] mailman (no c compiled code)
- [ ] libexif (no proper version string found) signature_needs_work
- [ ] libdwarf (no proper version string found) signature_needs_work
- [ ] libcdio (no proper version string found) signature_needs_work
- [ ] libmicrohttpd (no proper version string found) signature_needs_work
- [ ] ansible (too large ~1150 dir and ~16000 files) (also from a quick manual search in
/usr/bin/found no proper version string) - [x] libbpg #1237
- [x] zsh #1240
- [x] dbus #1241
- [x] libical #1243
- [x] liblas #1244
I would be adding more in this list with time, and anyone else should feel free to do the same.
P.S. - This list is not strictly for the purpose of the helper script. If anyone feels to add any of these checkers and learn, they are welcome to do so :)
I'd be interested to see how strings for mailman work, since that's python and not compiled C code. (also, just generally interested as I've been a developer on Mailman for years!)
@terriko as you can see, I've completed the above list (but did not found any proper version string in any of them T-T). Do you have any packages in mind for whom you would like checkers for? (I am searching for packages from cvedetails)
Also, why don't we use r"wireshark-2.6.2-12.el8.x86_64.debug",? (since these type of strings are only found in redhat packages, but by using these, we would atleast be able to detect them for these distros)
@peb-peb This is a txt file containing some packages that I found having CVEs in Manjaro. You can use it for creating checkers if you like :D
Looks like everything that was feasible on this wishlist has been complete,d so I'm going to go ahead and close it.