UCHECKER

Free security tool for shared libraries

Use to identify which processes in the OpenSSL and GNU C (glibc) are still using outdated libraries and need a restart

The UChecker tool will detect if any out-of-date shared libraries are present on disk or in-memory. This function differs from other scanners that will not detect outdated versions resident in memory. It’s important to note that the package manager for your Linux distribution will not replace any libraries held in memory that are in use.

How does UChecker work?

 

Visit the Github page to download

UChecker and learn more

* uChecker is open source. As a rule of thumb, you should always check the source code of programs you download from the internet before running them, so this is the way to go if you have the necessary programming skills. Download the source code, look at the python code, and run uChecker locally.

So, you run UChecker, what’s next?

Libraries can be updated by restarting all processes by rebooting the server. However, this will disrupt any processes that are in use and result in service downtime. The alternative option is to use Tuxcare’s live patching LibraryCare service to update outdated libraries and apply security patches to libraries such as OpenSSL and glibc while they are in memory.

Application of the updates will not need a server reboot. This solution will significantly reduce service disruption and narrow the window for exploitation of any vulnerabilities in your system.

© 2022 TuxCare, All Rights Reserved. TuxCare is a registered trademark of CloudLinux Software, Inc. and its subsidiaries in the United States and/or other countries