This is exactly what Red Hat Network (RHN) affords, the ability to schedule select errata (such as only RHSA/security, not RHBA/bug or RHEA/enhancement).
In addition to being able to push down select errata like RHN "hosted" (rhn.redhat.com), standalone RHN Satellite Server gives you even more capabilities. E.g., RHN Satellite Server lets you maintain clone channels with just select, cloned errata (again, such as only RHSA/security), and subscribe systems to those clone channels. This allows organizations to maintain their own adoption of errata and related, custom change control, with no chance of any update occurring that has not been explicitly cloned into the clone channels that the systems are actually subscribed to. And even if you have an "airgap" network (one that does not connect to the Internet), RHN Satellite Server is still your solution. It can export incremental channel changes, which can be imported into the "disconnected" satellite, and the channels maintained as still described prior. This is a job for RHN Satellite Server. It's one of its major advantages over just the YUM and related tools, and maintaining flat YUM repositories. It makes things easy, as it has a full, relational database and other information built-in, as well as the direct RHN pull (or import in the case of "disconnected" servers). ----- Original Message ----- From: Hugh Brown <[email protected]> Sent: Friday, August 12, 2011 12:07 PM On 08/12/2011 11:03 AM, solarflow99 wrote: > I think there is a way to do that with yum, > > > > On Thu, Aug 11, 2011 at 6:24 PM, Eric Weiss<[email protected]> wrote: > >> Hello Redhat security/support,**** >> >> ** ** >> >> Would you have a list of security patches for RHEL 5u5 through 5u7? Reason >> being, we can’t update 5u5 to 5u7 in a certain environment, but need all of >> the latest security patches going up to version 5u7. Not sure if that’s >> even possible. If not, a list of current security only patches for 5u5 >> would work.**** >> >> ** ** >> >> Many thanks,**** >> >> * * >> >> *Eric Weiss***** >> yum -y install yum-security # Get a list of all packages and their errata, constrained # to only the security packages yum --security list-security # update only rpms which are flagged as security in the # metadata yum --security update _______________________________________________ rhelv5-list mailing list [email protected] https://www.redhat.com/mailman/listinfo/rhelv5-list
