1 |
2011/5/30 Jean-François Maeyhieux <b4b1@××××.fr> |
2 |
|
3 |
> I think you may be use this old script as i get used several years ago: |
4 |
> |
5 |
> website: http://www.panhorst.com/glcu/ |
6 |
> ebuild: http://bugs.gentoo.org/show_bug.cgi?id=101827 |
7 |
> |
8 |
> |
9 |
> Hopping this script could help you... It manage daily update |
10 |
> (sync,build) and report via cron/mail. So you've just to install |
11 |
> pre-built package that have been prepared on a daily frequency when you |
12 |
> decide it's ok to do it without lost time. A revdep-rebuild and commit |
13 |
> of new configuration file using a configured dispatch-conf later, your |
14 |
> machine is update. |
15 |
> |
16 |
> |
17 |
I wrote (and still maintain) a package called cvechecker ( |
18 |
http://cvechecker.sourceforge.net) whose purpose is to scan the system for |
19 |
installed software (or you use a simple file that tells the application what |
20 |
is installed so systemwide scans aren't needed then anymore) and pull in |
21 |
information from NVD about CVE entries. It then matches the CVE entries with |
22 |
the detected software/versions on your system and report which ones might be |
23 |
affected by a known vulnerability. |
24 |
|
25 |
Wkr, |
26 |
Sven Vermeulen |