Linux - limit yum so that it lists or installs only security updates

Linux - limit yum so that it lists or installs only security updates


The plugin is already a part of yum itself, no need to install anything.

For Red Hat Enterprise Linux 6

# yum install yum-plugin-security

For both Red Hat Enterprise Linux 5, 6, and 7

  • To list all available security updates with verbose descriptions of the issues they apply to:
# yum info-sec
  • Run the following command to download and apply all available security updates from Red Hat Network hosted or Red Hat Network Satellite:
# yum -y update --security

NOTE: It will install the last version available of any package with at least one security errata thus can install non-security erratas if they provide a more updated version of the package.

  • To only install the packages that have a security errata use
# yum update-minimal --security -y
  • yum-security also allows installing security updates based on the CVE reference of the issue. To install a security update using a CVE reference run:
# yum update --cve <CVE>

e.g.

# yum update --cve CVE-2008-0947

Viewing available advisories by severities:

    • Related Articles

    • Installation open vmware-tools sous Linux

      ########### Linux 7 ########### #1 /usr/bin/vmware-uninstall-tools.pl #2 yum list |grep -i vmware yum remove cd /etc/yum.repos.d ; vi vmware-tools.repo [vmware-tools] name = VMware Tools baseurl = http://packages.vmware.com/packages/rhel7/x86_64/ ...
    • SOFE 1.0 : Créer Clef publique RSA sous linux

      Voici un petit exemple du programme que j'ai trouvé pour créer des clefs publiques sans effort. Mon exemple donne accès sans mot de passe à exagon via le compte Oracle (Login Oracle) ssh-keygen ssh-copy-id -i ...
    • opatch requires response file for Oracle Configuration Manager (OCM) : One-off patch installation failed during configuration

      opatch requires response file for Oracle Configuration Manager (OCM) : One-off patch installation failed during configuration ERROR: OPatch failed because of cmd. args. problem. To run in silent mode, OPatch requires a response file for Oracle ...
    • The certificate /usr/share/rhn/ULN-CA-CERT is expired.

      https://support.oracle.com/epmos/faces/SearchDocDisplay?_adf.ctrl-state=r3eksq0tp_102&_afrLoop=466191612261818#SYMPTOMS WORKAROUND Please make sure to have following or later version of the packages installed on the system before October 9, 2018. ...
    • spécifications pour serveur SOFE 2.0

      Voici les spécifications pour le nouveau serveur SOFE 2.0 Il n'y a aucune licence Oracle (ou propriétaire) sur ce serveur, les technologies qui sont utilisées sont de nature Open Source. Il n'y a aucune contrainte de nombre de serveurs.  SOFE 2.0 ...