[Secure-testing-team] Debian Security Analyzer (debsecan)

[Florian Weimer]

* Stefan Fritsch:

> Hi Florian,
>
>> I've hacked something to check installed packages against the
>> vulnerability database.
>
> this is nice.

Thanks.

> A suggestion: it should not print packages that are in state
> "deinstall ok config-files"

Fixed, by skipping packages which are not in the "installed" state.
(I hope this is okay; theoretically, a vulnerable binary of a
half-installed package might be left behind.)