tldr/pages/linux/debsecan.md

25 lines
708 B
Markdown
Raw Normal View History

2021-09-25 07:04:40 +01:00
# debsecan
> Debian Security Analyzer, a tool to list vulnerabilities on a particular Debian installation.
> More information: <https://gitlab.com/fweimer/debsecan>.
- List vulnerable installed packages on the current host:
`debsecan`
- List vulnerable installed packages of a specific suite:
`debsecan --suite {{release_code_name}}`
- List only fixed vulnerabilities:
`debsecan --suite {{release_code_name}} --only-fixed`
- List only fixed vulnerabilities of unstable ("sid") and mail to root:
`debsecan --suite {{sid}} --only-fixed --format {{report}} --mailto {{root}} --update-history`
- Upgrade vulnerable installed packages:
`sudo apt upgrade $(debsecan --only-fixed --format {{packages}})`