arch-audit - Detecte vulnerabilidades nos pacotes instalados no Arch Linux

Dica publicada em Linux / Segurança

Por Uberlan em 05/11/2016

Hits: 4.030 Categoria: Linux Subcategoria: Segurança

arch-audit - Detecte vulnerabilidades nos pacotes instalados no Arch Linux

Olá, amigos linuxers!

Mais uma vez, venho apresentar dicas para melhorar sua experiência com o Linux.

Desta vez, apresento-lhes uma ferramenta para o poderoso Arch Linux. Uma excelente ferramenta que vai ajudar em muito na segurança, auditoria e prevenção do seu sistema. A ferramenta em questão é a arch-audit.

Esta maravilha verifica os pacotes instalados em seu sistema e informa quais vulnerabilidades estes pacotes possuem através de informações obtidas da comunidade Arch CVE Monitoring Team (ACMT).

A ACMT monitora todas as publicações CVE (Commom Vulnerabilities and Exposures) e se o pacote for vulnerável, eles notificam o desenvolvedor sobre o problema.

Desenvolvida pelo programador italiano Andrea Scarpino, esta ferramenta depende de rust e cargo que, no Arch Linux, podem ser instalados pelo comando:

pacman -S rust cargo

Para instalar arch-audit, basta usar os seguintes comandos:

git clone https://github.com/ilpianista/arch-audit
$ cd arch-audit
$ cargo build
$ cargo run

Exemplo de uso:

# arch-audit
Package libtiff is affected by ["CVE-2016-5875", "CVE-2016-5314", "CVE-2016-5315", "CVE-2016-5316", "CVE-2016-5317", "CVE-2016-5320", "CVE-2016-5321", "CVE-2016-5322", "CVE-2016-5323", "CVE-2016-5102", "CVE-2016-3991", "CVE-2016-3990", "CVE-2016-3945", "CVE-2016-3658", "CVE-2016-3634", "CVE-2016-3633", "CVE-2016-3632", "CVE-2016-3631", "CVE-2016-3625", "CVE-2016-3624", "CVE-2016-3623", "CVE-2016-3622", "CVE-2016-3621", "CVE-2016-3620", "CVE-2016-3619", "CVE-2016-3186", "CVE-2015-8668", "CVE-2015-7313", "CVE-2014-8130", "CVE-2014-8127", "CVE-2010-2596", "CVE-2016-6223", "CVE-2015-7554", "CVE-2015-8683"]. VULNERABLE! Package libusbmuxd is affected by ["CVE-2016-5104"]. VULNERABLE! Package jasper is affected by ["CVE-2015-8751", "CVE-2015-5221", "CVE-2015-5203"]. VULNERABLE! Package lib32-gdk-pixbuf2 is affected by ["CVE-2016-6352"]. VULNERABLE! Package ocaml is affected by ["CVE-2015-8869"]. VULNERABLE! Package bzip2 is affected by ["CVE-2016-3189"]. VULNERABLE! Package greenbone-security-assistant is affected by ["CVE-2016-1926"]. VULNERABLE! Package libimobiledevice is affected by ["CVE-2016-5104"]. VULNERABLE!

Espero que a dica seja útil e agradeço a atenção.

Comentários

#1 Comentário enviado por niquelnausea em 08/11/2016 - 13:22h

boa dica!
este pacote já esta disponível no aur https://aur.archlinux.org/packages/arch-audit/

#2 Comentário enviado por mangodeupp em 14/07/2017 - 12:45h

então meu amigo, em caso positivo, como proceder? exemplo:
Finished dev [unoptimized + debuginfo] target(s) in 0.1 secs
Running `target/debug/arch-audit`
Package binutils is affected by CVE-2017-9044, CVE-2017-9043, CVE-2017-9042, CVE-2017-9041, CVE-2017-9040, CVE-2017-9039, CVE-2017-9038, CVE-2017-7210, CVE-2017-7209, CVE-2017-6969, CVE-2017-6966, CVE-2017-6965. High risk!
Package c-ares is affected by CVE-2017-100038. Medium risk!
Package cairo is affected by CVE-2017-7475. High risk!
Package faad2 is affected by CVE-2017-9257, CVE-2017-9256, CVE-2017-9255, CVE-2017-9254, CVE-2017-9253, CVE-2017-9223, CVE-2017-9222, CVE-2017-9221, CVE-2017-9220, CVE-2017-9219, CVE-2017-9218. High risk!
Package jasper is affected by CVE-2017-6852, CVE-2017-6850, CVE-2017-5505, CVE-2017-5504, CVE-2017-5503. High risk!
Package lame is affected by CVE-2017-9872, CVE-2017-9871, CVE-2017-9870, CVE-2017-9869, CVE-2015-9101. Medium risk!
Package lib32-expat is affected by CVE-2017-9233, CVE-2016-9063. Medium risk!
Package libffi is affected by CVE-2017-1000376. High risk!
Package libtiff is affected by CVE-2016-10095, CVE-2015-7554. Critical risk!
Package linux is affected by CVE-2017-9986, CVE-2017-9985, CVE-2017-9984, CVE-2017-1000379, CVE-2017-1000371, CVE-2017-1000370, CVE-2017-1000365. High risk!
Package openjpeg2 is affected by CVE-2016-9118, CVE-2016-9117, CVE-2016-9116, CVE-2016-9115, CVE-2016-9114, CVE-2016-9113. High risk!
Package pcre is affected by CVE-2017-7246, CVE-2017-7245, CVE-2017-7244, CVE-2017-7186. Medium risk!Update to 8.41-1 from testing repos!
Package pcre2 is affected by CVE-2017-7186. Medium risk!
Package podofo is affected by CVE-2017-7994, CVE-2017-7383, CVE-2017-7382, CVE-2017-7381, CVE-2017-7380, CVE-2017-7379, CVE-2017-7378, CVE-2017-6842, CVE-2017-6841, CVE-2017-6840. High risk!
Package vim is affected by CVE-2017-11109. High risk!
Package xorg-server is affected by CVE-2017-10972, CVE-2017-10971. High risk!

arch-audit - Detecte vulnerabilidades nos pacotes instalados no Arch Linux

arch-audit - Detecte vulnerabilidades nos pacotes instalados no Arch Linux

Outras dicas deste autor

Leitura recomendada

Comentários

Contribuir com comentário