1.2.1

• Added +11 new CVE descriptions
• Updated CVE-2023-6817 detection
• Updated CVE-2021-28950 detection
• Added coccinelle 1.2 support

Full Changelog: 1.2.0...1.2.1

CVEhound 1.2.0

What's Changed

• Added +98 new CVE descriptions
• Added --exclude <file> option to exclude CVE-ids from the file from checks
• Added multiprocessing support
• Fixed ordering in reports (reproducibility)
• Support macOS (it's possible to run the tool on the system)
• Support Python 3.10

New Contributors

• @17451k made their first contribution in #39
• @0rphan made their first contribution in #38
• @firmianay made their first contribution in #45

Full Changelog: 1.1.0...1.2.0

CVEhound 1.1.0

• Added +69 new CVE descriptions
• Renamed --config option to --kernel-config
• Added --config option to support config.ini files with default settings
• Added --metadata option to support custom path to kernel_cves.json.gz
• Added CVEHOUND_METADATA environment to support custom path to
  kernel_cves.json.gz
• Added file and line fields to json report
• Fixed kernel sources detection problem for kernels < 2.6.12-rc2
• Renamed CVE-2022-0886 (rejected) to CVE-2022-27666

CVEhound 1.0.9

• Added +43 new CVE descriptions
• Improved CVE-2019-15221 detection
• Fixed CVE-2020-25670 detection
• Fixed CVE-2020-25671 detection
• Added --exclude option to drop CVEs from check
• Added --ignore-files option to exclude kernel files from check
• Added --list options to list all known CVEs
• Improved --help output
• Removed strict lscpu dependency
• Fixed a crash when using --exploit option and metadata is not available
• Fixed a crash when using --config option and CVE is found in an .h file

CVEhound 1.0.8

• Added +52 new CVE descriptions
• Improved CVE-2014-1737 detection
• Improved CVE-2014-1738 detection

CVEhound 1.0.7

Hotfix release.

• Fixed cvehound --cve all ... invocation
• Changed --report-strict argument to --check-strict

CVEhound 1.0.6

• Restored support for python 3.5
• Fixed cvehound --cve all ... argument
• Added minimal coccinelle version to CVE-2021-38209, CVE-2021-3656 rules
• Changed minimal coccinelle version from 1.0.8 to 1.0.7 in CVE-2020-24490 rule
• Removed minimal coccinelle version for CVE-2021-0342 rule
• Fixed setup.py by adding lxml dependency required for cvehound_update_metadata
• Fixed CVE-2015-4700 false positive with --all-files
• Added --cve [all, assigned, disputed] modes. Changed default mode from all to assigned
• Moved CVE-2021-3178, CVE-2019-12382, CVE-2019-12455, CVE-2019-19770 to disputed mode
• Fixed coccinelle installation from git in CI
• Added coccinelle 1.0.4 to CI
• Added ChangeLog

CVEhound 1.0.5

• Added 40 new CVE descriptions
• Added --exploit filter to check only for CVEs known to have exploits (according to FSTEC BDU database)
• Added cvehound_update_rules script to fetch detection rules from git without updating a tool

CVEhound 1.0.4

• fix install problem with missing cvehound.kbuildparse package
• fix --all-files mode
• bumped minimal version for python to 3.6
• add 24 new CVE rules

CVEhound 1.0.3

• 50 new CVE detections