Install Security Patches or Updates Automatically on CentOS and RHEL

If You Appreciate What We Do Here On TecMint, You Should Consider:

  1. Stay Connected to: Twitter | Facebook | Google Plus
  2. Subscribe to our email updates: Sign Up Now
  3. Get your own self-hosted blog with a Free Domain at ($3.95/month).
  4. Become a Supporter - Make a contribution via PayPal
  5. Support us by purchasing our premium books in PDF format.
  6. Support us by taking our online Linux courses

We are thankful for your never ending support.

Gabriel Cánepa

Gabriel Cánepa is a GNU/Linux sysadmin and web developer from Villa Mercedes, San Luis, Argentina. He works for a worldwide leading consumer product company and takes great pleasure in using FOSS tools to increase productivity in all areas of his daily work.

Your name can also be listed here. Got a tip? Submit it here to become an TecMint author.

RedHat RHCE and RHCSA Certification Book
Linux Foundation LFCS and LFCE Certification Preparation Guide

You may also like...

5 Responses

  1. Steve says:

    It would be nice if Mr. Cánepa would confirm the proposed problems with this HowTo’s application to CentOS, and possibly rewrite it to just apply to Red Hat. I already know about this issue, and came across this post looking for more novel solutions. Leaving this incorrect information out there in the wild seems irresponsible.

  2. Stefan says:

    The point is that the CentOS project doesn’t supply the Security Errata which is necessary to perform security updates. They don’t provide updateinfo.xml, and thus the code `yum –security upgrade` above will do nothing to apply security updates. You should be able to verify this in the logs after running it for a week.

    So, don’t get your hopes up.

    If you want security updates, use RHEL or Scientific Linux; or use one of the third-party projects to do this work.

    For more information about the lack of security RPMs for CentOS, see:

    * petersouter.co.uk/the-story-of-errata-for-centos/
    * grokbase.com/t/centos/centos-devel/14a1zyx1dd/yum-plugin-security-and-shellshock
    * https://www.centos.org/forums/viewtopic.php?t=4296

  3. borys says:

    CentOS have not security date into packages, so it can not be recognize as security. Did you check it, before wrote this article?

    • Gabriel A. Cánepa says:

      Did you actually read this article, or just took a quick glance at it? Please note what I actually wrote is, “…auto update essential security packages when needed…”. You can also refer to https://www.centos.org/forums/viewtopic.php?t=4296 if in doubt.

      • MW says:

        Gabriel, listen to the commenters above you – the point they are making is that CentoS DOES NOT PROVIDE SECURITY ERRATA. Your `yum –security upgrade` command, will always be no-op and return “No packages needed for security; x packages available”, regardless of whether there are known vulnerabilities in your installed packages.

Got something to say? Join the discussion.

Your email address will not be published. Required fields are marked *