Sun Patch Check lists missing security patches by comparing the output from the Sun Solaris “showrev” command to that from the Sun recommended patch list.
Sun Patch Check is a tool that does exactly what it says on the tin. Sun Patch Check compares the output from the Sun Solaris showrev command to that from the Sun recommended patch list.
Requirements
Sun Patch Check only requires the GNU C compiler.
Download
The latest version of Sun Patch Check can be downloaded from here.
Compiling
Sun Patch Check can be compiled from source using the following command:
gcc -o sunpatchcheck sunpatchcheck.c
Running
Before you can use Sun Patch Check to check the patches of any Sun Solaris system you will need to update the patch list from the Sun web site. This can be done with the following command:
sunpatchcheck --update
You may want to update the patch list on a regular basis otherwise there may be more recent patches missing from the database.
You will need to collect a patch list from a Sun Solaris system you want to check. This can be done with the following Solaris command:
showrev -p >patchlist.txt
Sun Patch Check needs to know what version of Solaris you are comparing the patches from, this is specified on the command line when running Sun Patch Check. To check the patches from a Solaris 10 Sparc system using the file extracted in the previous example:
sunpatchcheck --check=patchlist.txt --solaris=10
Online help for all options is available using:
sunpatchcheck --help
License
Sun Patch Check is covered by the GPL v3 license, but you will also need to agree to the Sun Solve license.
Link: http://www.titania.co.uk/sunpatchcheck.php