Advchk (Advisory Check) reads security advisories so you dont have to. It gathers security advisories using RSS feeds, compares them to a list of known software, and alerts you if youre vulnerable. Since adding software lists by hand would be quite a boring task, it leverages your systems package manager for detecting software. Using it can be as simple as "advchk -F myhost.list". Quite a few CERTs and Vendors also offer security-relevant RSS feeds, and some usenet gateways like Google Groups offer RSS subscriptions.