≡ Menu

Yum Command Check and Apply Only Security Updates

  • enzo July 27, 2012, 12:33 am

    this advice can be used on centos dist.?

    • Deadmeat May 3, 2013, 3:18 am

      yum-security does *not* work for CentOS and there’s no ETA.

  • Admon July 27, 2012, 2:02 am

    Supposed the package named as yum-security on RHEL-5..

  • nabyl July 27, 2012, 1:14 pm

    on my centos 5.8 it’s called yum-security.noarch

  • Enzo March 19, 2013, 11:09 am

    Thank you nabyl, you are right, i find the package.

    Best regards.

  • jules345 April 10, 2014, 12:42 pm

    doesn’t seem to work anymore, does nobody update the lists?, I ran:

    $ yum update –security

    and it claimed that nothing needed updating. however I urgently needed to patch openssl for CVE-2014-0160 (heartbleed).

    Instead I restored to doing it manually:

    $ yum update -y openssl

  • Stefan Lasiewski May 14, 2014, 8:32 pm

    `yum-plugin-security` still doesn’t work on CentOS6. But it does work on Scientific Linux.

    On my SL6 box, yum security sees the following security alerts for the kernel.

    [root@SL6 ~]# cat /etc/issue
    Scientific Linux release 6.5 (Carbon)
    Kernel \r on an \m
    [root@SL6 ~]# yum updateinfo list –security –quiet
    SLSA-2014:0475-1 important/Sec. kernel-2.6.32-431.17.1.el6.x86_64
    SLSA-2014:0475-1 important/Sec. kernel-firmware-2.6.32-431.17.1.el6.noarch
    FEDORA-EPEL-2013-11393 security nagios-common-3.5.1-1.el6.x86_64
    [root@SL6 ~]#

    In this next example, I deliberately install the httpd version 2.2.15-29 which has several security updates as mentioned in the RHSA/CESA security archives. `yum update –security` does nothing.

    [root@centos6 ~]# yum localinstall httpd-2.2.15-29.el6.centos.x86_64.rpm -y –quiet
    [root@centos6 ~]# cat /etc/issue
    CentOS release 6.5 (Final)
    Kernel \r on an \m
    [root@centos6 ~]#
    [root@centos6 ~]# yum update –security –quiet
    [root@centos6 ~]# yum updateinfo list –security –quiet
    [root@centos6 ~]#

  • Monsoft December 10, 2015, 9:49 am

    Centos main repository doesn’t mark packages as security updates so yum plugin can’t see it. EPEL repo does.

  • Security: Are you a robot or human?

    Leave a Comment

    You can use these HTML tags and attributes: <strong> <em> <pre> <code> <a href="" title="">