Bug 220294

Summary: Yum needs 'update only-security' feature
Product: [Fedora] Fedora Reporter: Baris Cicek <baris>
Component: yumAssignee: Luke Macken <lmacken>
Status: CLOSED DUPLICATE QA Contact:
Severity: medium Docs Contact:
Priority: medium    
Version: rawhideCC: james.antill, mattdm, pfrields
Target Milestone: ---   
Target Release: ---   
Hardware: All   
OS: Linux   
Whiteboard:
Fixed In Version: 234646 Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2007-04-19 19:42:02 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Attachments:
Description Flags
securityonly.py none

Description Baris Cicek 2006-12-20 08:35:46 UTC 
Description of problem:
This is not a bug but more likely to be feature request. 

Currently default way to update all packages throughout the system is using 'yum
update'. However this updates every package, and if you're satisfied with your
system updating several packages might annoy you. But you still need to keep you
system updated due to security concerns. 

Just wondering if it's possible to add a feature to yum to update only security
related updates. With FC6 pop reports updates as security. So why yum can't
check security related updates, and update only those packages. Using this neat
prospective feature, it would be really less pain for administrators to update
their servers w/o waiting their gnome-games package to get updated.
Comment 1 Jeremy Katz 2006-12-20 13:55:14 UTC 
Luke was working on a plugin to allow this.
Comment 2 Luke Macken 2006-12-20 15:56:13 UTC 
Created attachment 144113 [details]
securityonly.py

Attached is a proof-of-concept yum plugin to install *only* security updates. 
As noted in the source, this should *not* be used in production yet since all
of our repos do not produce the necessary metadata to determine if an update is
security related or not.

With the convergence of Core and Extras, along with the new updates system
(http://fedoraproject.org/wiki/Infrastructure/UpdatesSystem), this plugin will
eventually work with all of Fedora.
Comment 3 Matthew Miller 2007-04-10 16:34:51 UTC 
Fedora 7 test bugs should be filed against "devel", not against test1/2/3. This
isn't obvious, I know. Moving this report so it isn't lost.

This is a bulk message -- I apologize if this was actually meant to be targeted
against a different release. If so, please fix or let me know. Thanks.
Comment 4 James Antill 2007-04-19 19:42:02 UTC 
 Luke you say that "this should *not* be used in production yet since all
of our repos do not produce the necessary metadata to determine if an update is
security related or not." ... I assume this is now fixed, as Mark has said that
RHN now does produce all the data necessary for RHEL (in testing earler versions
of my version of the plugin).
 Sorry to DUP to a newer bug, but I had no idea about this one until you showed
it to me :(.

*** This bug has been marked as a duplicate of 234646 ***
Comment 5 Luke Macken 2007-04-20 02:31:16 UTC 
Fedora Extras does not contain the updateinfo.xml.gz metadata.  Once Bodhi is
deployed, then all Fedora updates will have the appropriate metadata.