Linux distribution CVE support comparison
||Easy to use. Maintained by the Debian testing team. Lists packages, CVE numbers and details.
||They just packaged the Debian scanner without providing a database for it!
And since 2008 there is a bug about it being 100% useless.
||Tells you packages for which there are security updates. Doesn't tell you about remaining unfixed USN/CVEs
||Provides package name and CVE number. Note: On older systems there is only "yum list updates".
||Provides packages names with security relevant updates. You need to filter the list yourself or use the "--cve" switch to limit to CVEs only.
||Provides packages names with security relevant updates. Similar to zypper you need to do the filtering yourself.
||There is a dedicated scanner, but no documentation.
||Lists vulnerable ports and vulnerability details.
Linux distribution security news feeds
Almost every distribtuion provides human-readably security notices via news feeds. So to be stay up-to-date on recent security issues check out the list of and subscribe to them using your favourite RSS reader (e.g. Liferea