Jaigh Jaddo writes:
Is there a tool similar to freeBSD's portaudit? Something that will report packages that have known vulnerabilities.
No. For the simple reason that a known vulnerability results in an updated package. If you want to make sure that you're not running any known vulnerability, run "yum update".
Attachment:
pgpP0twOYMjJA.pgp
Description: PGP signature
