Hide Forgot
Description of problem: RHEL7's "yum updateinfo list all" does not return the security errata for all the RHEL7 packages if those packages are not installed. Version-Release number of selected component (if applicable): yum-3.4.3-132.el7.noarch Steps to Reproduce: 1. Use a RHEL7 machine that does not have java-1.6.0-openjdk. 2. Execute "yum updateinfo list all java-1.6.0-openjdk". 3. Note that nothing is returned. At the very least, RHSA-2016:1776 (<https://rhn.redhat.com/errata/RHSA-2016-1776.html>) should be listed. Alternative Reproduction: 1. On a minimal-install RHEL7 machine, execute "yum updateinfo list all security | cut -d' ' -f2 | sort -u | wc -l". 2. Note the number is less than the number of entries on this page: <https://rhn.redhat.com/errata/rhel-server-7-errata-security.html> (yum's 126 vs. that page's 315 as of 2016-09-07.) Additional info: + The "yum updateinfo list all java-1.6.0-openjdk" command seems to work properly on RHEL6, with its yum-plugin-security package. + The RHEL6 "yum updateinfo list all security" command does not, because it believes "security" is the name of a package. + However, if one executes "yum --security updateinfo list all | cut -d' ' -f3 | sort -u | wc -l", one gets a number within ~11% of the number of entries (857) entries listed here: <https://rhn.redhat.com/errata/rhel-server-6-errata-security.html>.
I believe this could be duplicate to bug 1292150 which is being addressed in 7.3. Bernie, could you retest it on some recent RHEL-7.3 compose?
(In reply to Karel Srot from comment #2) === > Bernie, could you retest it on some recent RHEL-7.3 compose? === Working on this, today.
(In reply to Karel Srot from comment #2) === > Bernie, could you retest it on some recent RHEL-7.3 compose? === Here is my test: # rpm -q redhat-release-server redhat-release-server-7.3-6.el7.x86_64 # rpm -q yum yum-3.4.3-150.el7.noarch # yum repolist Loaded plugins: product-id, search-disabled-repos, subscription-manager repo id repo name status rhel-7-server-htb-rpms/x86_64 Red Hat Enterprise Linux 7 Server HTB ( 5,111 rhel-7-server-rpms/7Server/x86_64 Red Hat Enterprise Linux 7 Server (RPMs 11,375 repolist: 16,486 # rpm -q java-1.6.0-openjdk package java-1.6.0-openjdk is not installed # yum updateinfo list all java-1.6.0-openjdk Loaded plugins: product-id, search-disabled-repos, subscription-manager rhel-7-server-htb-rpms/x86_64 | 4.0 kB 00:00 rhel-7-server-rpms/7Server/x86_64 | 3.5 kB 00:00 RHSA-2014:0685 Important/Sec. java-1.6.0-openjdk-1:1.6.0.0-6.1.13.3.el7_0.x86_64 RHSA-2014:0907 Important/Sec. java-1.6.0-openjdk-1:1.6.0.0-6.1.13.4.el7_0.x86_64 RHSA-2014:1634 Important/Sec. java-1.6.0-openjdk-1:1.6.0.33-1.13.5.0.el7_0.x86_64 RHSA-2015:0085 Important/Sec. java-1.6.0-openjdk-1:1.6.0.34-1.13.6.1.el7_0.x86_64 RHSA-2015:0808 Important/Sec. java-1.6.0-openjdk-1:1.6.0.35-1.13.7.1.el7_1.x86_64 RHSA-2015:1526 Important/Sec. java-1.6.0-openjdk-1:1.6.0.36-1.13.8.1.el7_1.x86_64 RHSA-2015:2086 Important/Sec. java-1.6.0-openjdk-1:1.6.0.37-1.13.9.4.el7_1.x86_64 RHSA-2016:0067 Important/Sec. java-1.6.0-openjdk-1:1.6.0.38-1.13.10.0.el7_2.x86_64 RHSA-2016:0723 Critical/Sec. java-1.6.0-openjdk-1:1.6.0.39-1.13.11.0.el7_2.x86_64 RHSA-2016:1776 Important/Sec. java-1.6.0-openjdk-1:1.6.0.40-1.13.12.5.el7_2.x86_64 updateinfo list done So, that works! Thank you! Looking back at my opening comment, I see offered comparing the output of "yum updateinfo list all security | cut -d' ' -f2 | sort -u | wc -l" to the number of RHSAs once sees listed in RHN as an alternative test. I now know that my "cut" command was wrong for the output, thus giving me such a lower number of RHSAs than what one could find on RHN. Using: yum updateinfo list all security | \ sed 's/.*\(RHSA-[0-9]*:[0-9]*\).*/\1/' | \ sort -u | \ wc -l ...results in a much closer number. All-in-all, I think RHEL 7.3's yum fixes my initial problem and this ticket cat be closed after release. Thanks!
Thank you for the update!