The invention relates to a vulnerability analysis and restoration method for a self-made system. The method comprises the following steps: S1, whether a kernel version of the self-made system is within a vulnerability influence range or not is checked; if yes, executing the step S3, and if not, executing the step S2; S2, confirming whether the modification log affects the vulnerability or not, ifnot, determining that the self-made system does not need to repair the vulnerability, and if so, executing the step S3; and S3, verifying the export, checking whether a bug exists on the self-made system, if yes, repairing the bug through the patch, and if not, enabling the self-made system not to repair the bug. According to the vulnerability analysis and repair method for the self-made system, whether the vulnerability exists or not is judged by analyzing the difference between the source code modification part involved in the kernel vulnerability patch and the source code corresponding to the current self-made system, and the source code modification part in the patch is transplanted, so that the self-made system is prevented from being influenced by the vulnerability.