Home » , » LPVS : Package Vulnerability Scanner - A fast way to find out which packages on your system are insecure...

LPVS : Package Vulnerability Scanner - A fast way to find out which packages on your system are insecure...

Written By mediana saputra on Thursday, 7 February 2013 | 06:27

This Linux package vulnerability scanner (LPVS) uses public security news feeds provided by Linux distributions vendors to detect out-of-date packages that could pose a threat to your server. The scanner

currently runs on
Ubuntu
CentOSAdditional distributions might be added...

Limitations
Please know that the scanner works by comparing complex package version numbers and therefore is limited to do overly exact matches. It works best on an almost up-to-date installation. For example where you run the latest Ubuntu LTS release and do weekly or on demand updates. The current goal of the scanner is to avoid false positives and to be useful for daily analysis of a large number of systems. Note: When on Debian use debsecan instead! On FreeBSD usePortaudit.

Installation + Running
Download the scanner script, put it anywhere you like and run it like this

./lpvs-scan.pl

No need to run as root, any user will do. It just needs

Perl 5
Perl module XML::LibXSLT
Perl module XML::LibXML
and internet access

Please keep in mind that this is an experimental script which might report false positives and negatives!

Screenshots
Below you find a screenshot from a CentOS setup. Green lines indicate security advisory covering packages that are installed and up-to-date. Yellow lines indicate security advisories not applicable as the related packages are not installed. Red ones of course indicate a vulnerability.


































Download Releases - 
version 0.2 (09.12.2012)
New silent switch (-s)
New verbose switch (-v)
Works with older distros now
Fixes false positives

version 0.1 (initial)
Share this article :

Post a Comment

 
Support : Creating Website | Johny Template | Mas Template
Copyright © 2011. Turorial Grapich Design and Blog Design - All Rights Reserved
Template Created by Creating Website Published by Mas Template
Proudly powered by Blogger