[CentOS] Update only of security vulnerabilities?

Thu Apr 9 09:23:08 UTC 2015
Rafał Radecki <radecki.rafal at gmail.com>

Thanks for the links, they are very informative.

So as I see currently the only way to check if there are any security
updates available for Centos is to parse the errata info sent by email to
Centos Announce? :D

Does anyone have another solution implemented? :) Any help will be very
appreciated :)

BR,
Rafal.

2015-04-08 18:15 GMT+02:00 Jonathan Billings <billings at negate.org>:

> On Wed, Apr 08, 2015 at 03:54:18PM +0200, Rafał Radecki wrote:
> > What is the best way to get a list of available security updates?
> > I found several commands for that:
> > 1) yum updateinfo list updates -q --security
> > 2) yum list-security --security -q
> > 3) yum --security check-update -q
> > Based on the sample output below I think I can use any of the three with
> > some awk to get a list of packages.
>
> Keep in mind: when using the yum-plugin-security package which
> provides the --security option, you're only going to see security
> updates in EPEL (which I see you have enabled) and not in CentOS's
> repos.  As of yet, there are no errata data in the CentOS repos.
>
> See previous discussion here:
> http://lists.centos.org/pipermail/centos/2015-January/148839.html
> and on centos-devel:
> http://lists.centos.org/pipermail/centos-devel/2014-September/011893.html
>
> So, --security is pretty much a no-op, even when there are packages
> that fix security issues are available in the CentOS repos.
>
> --
> Jonathan Billings <billings at negate.org>
> _______________________________________________
> CentOS mailing list
> CentOS at centos.org
> http://lists.centos.org/mailman/listinfo/centos
>