1pullcves(1) pullcves Manual pullcves(1)
2
6 pullcves - Update the local cvechecker CVE database and version match‐
7 ing rules
8
10 pullcves pull or
11 pullcves cleancache
12
14 The pullcves script will download the CVE entries from the Internet and
15 store them in the local cvechecker databases. It will also download the
16 latest version matching rules from the Internet and load them up in the
17 cvechecker database. It uses the wget tool for the downloads and xslt‐
18 proc for the XML conversions.
19 If cleancache is used, it will clean its internal cache. This will ef‐
21 fectively remove the downloaded XML (and generated CSV) files, causing
22 the next pull to redownload and reimport everything.
23 The pullcves script uses the configuration file of cvechecker for the
25 paths of the various locations using the same logic (if CVECHECK‐
26 ER_CONFFILE is set as environment variable, then it has to point to a
27 valid configuration file; if the environment variable is not set, it
28 ties ~/.cvechecker.rc, /usr/local/etc/cvechecker.conf and
29 /etc/cvechecker.conf in that order).
30
32 The command is simply pullcves pull or pullcves cleancache.
33 RETURN CODES
35 The returncode of pullcves depends on the actions it performed.
36 In case of pull:
38 · A returncode of 0 means that the CVE database and version matching
40 rules were already up to date
41 · A returncode of 1 means that the CVE database is updated
43 · A returncode of 2 means that the version matching rules are updated
45 · A returncode of 3 means that both the CVE database and version match‐
47 ing rules are updated
48
50 pullcves is part of the cvechecker tool. pullcves was written by Sven
51 Vermeulen <sven.vermeulen@siphos.be>.
52August 17, 2013 17 August 2013 pullcves(1)