| 1 |
2011/5/30 Jean-François Maeyhieux <b4b1@××××.fr> |
| 2 |
|
| 3 |
> I think you may be use this old script as i get used several years ago: |
| 4 |
> |
| 5 |
> website: http://www.panhorst.com/glcu/ |
| 6 |
> ebuild: http://bugs.gentoo.org/show_bug.cgi?id=101827 |
| 7 |
> |
| 8 |
> |
| 9 |
> Hopping this script could help you... It manage daily update |
| 10 |
> (sync,build) and report via cron/mail. So you've just to install |
| 11 |
> pre-built package that have been prepared on a daily frequency when you |
| 12 |
> decide it's ok to do it without lost time. A revdep-rebuild and commit |
| 13 |
> of new configuration file using a configured dispatch-conf later, your |
| 14 |
> machine is update. |
| 15 |
> |
| 16 |
> |
| 17 |
I wrote (and still maintain) a package called cvechecker ( |
| 18 |
http://cvechecker.sourceforge.net) whose purpose is to scan the system for |
| 19 |
installed software (or you use a simple file that tells the application what |
| 20 |
is installed so systemwide scans aren't needed then anymore) and pull in |
| 21 |
information from NVD about CVE entries. It then matches the CVE entries with |
| 22 |
the detected software/versions on your system and report which ones might be |
| 23 |
affected by a known vulnerability. |
| 24 |
|
| 25 |
Wkr, |
| 26 |
Sven Vermeulen |
Archives