Product SiteDocumentation Site

6.19.2. Usage examples

Security information listing.
# yum list-security
Loaded plugins: aliases, protect-packages, protectbase, security, versionlock
1765 packages excluded due to repository protections
Reading version lock configuration

FEDORA-2008-5476 security clamav-0.93.1-1.fc9.i386
FEDORA-2008-5476 security clamav-data-0.93.1-1.fc9.i386
FEDORA-2008-5476 security clamav-filesystem-0.93.1-1.fc9.i386
FEDORA-2008-5476 security clamav-lib-0.93.1-1.fc9.i386
FEDORA-2008-5476 security clamav-server-0.93.1-1.fc9.i386
FEDORA-2008-5476 security clamav-server-sysv-0.93.1-1.fc9.i386
FEDORA-2008-5476 security clamav-update-0.93.1-1.fc9.i386
FEDORA-2008-5072 bugfix   cvs-1.11.22-14.fc9.i386
FEDORA-2008-5452 bugfix   epiphany-2.22.2-2.fc9.i386
FEDORA-2008-5416 bugfix   gnome-python2-2.22.1-2.fc9.i386
FEDORA-2008-5416 bugfix   gnome-python2-bonobo-2.22.1-2.fc9.i386
FEDORA-2008-5416 bugfix   gnome-python2-canvas-2.22.1-2.fc9.i386
FEDORA-2008-5416 bugfix   gnome-python2-gconf-2.22.1-2.fc9.i386
FEDORA-2008-5416 bugfix   gnome-python2-gnomevfs-2.22.1-2.fc9.i386
FEDORA-2008-5196 bugfix   gtkmm24-2.12.7-1.fc9.i386
FEDORA-2008-4976 bugfix   lcms-1.17-5.fc9.i386
FEDORA-2008-4976 bugfix   lcms-libs-1.17-5.fc9.i386
FEDORA-2008-5525 bugfix   libcurl-7.18.2-1.fc9.i386
FEDORA-2008-5562 bugfix   libdrm-2.4.0-0.13.fc9.i386
FEDORA-2008-5448 bugfix   libraw1394-1.3.0-7.fc9.i386
FEDORA-2008-5450 bugfix   yelp-2.22.1-3.fc9.i386
list-security done

# yum info-security
Loaded plugins: aliases, protect-packages, protectbase, security, versionlock
1765 packages excluded due to repository protections
Reading version lock configuration

===============================================================================
  clamav-0.93.1-1.fc9
===============================================================================
  Update ID : FEDORA-2008-5476
    Release : Fedora 9            
       Type : security
     Status : stable
     Issued : 2008-06-20 16:44:24
       Bugs : 451761 - CVE-2008-2713 clamav: DoS / crash via crafted petite file
Description : CVE-2008-2713
      Files : clamav-debuginfo-0.93.1-1.fc9.ppc64.rpm
            : clamav-milter-sysv-0.93.1-1.fc9.ppc64.rpm
            : clamav-milter-sendmail-0.93.1-1.fc9.ppc64.rpm
            : clamav-milter-core-0.93.1-1.fc9.ppc64.rpm
... 

===============================================================================
  gnome-python2-2.22.1-2.fc9
===============================================================================
  Update ID : FEDORA-2008-5416
    Release : Fedora 9
       Type : bugfix
     Status : stable
     Issued : 2008-06-20 16:54:54 
       Bugs : 451754 - /usr/share/gtk-doc should be owned by gnome-python2-gnomevfs
Description : Update to the latest gnome-python 2.22 release.
      Files : gnome-python2-debuginfo-2.22.1-2.fc9.ppc64.rpm
            : gnome-python2-devel-2.22.1-2.fc9.ppc64.rpm
            : gnome-python2-gnomevfs-2.22.1-2.fc9.ppc64.rpm
            : gnome-python2-gconf-2.22.1-2.fc9.ppc64.rpm
...

# yum info-sec FEDORA-2008-5676
...
===============================================================================
  phpMyAdmin-2.11.7-1.fc9
===============================================================================
  Update ID : FEDORA-2008-5676
    Release : Fedora 9
       Type : security
     Status : stable
     Issued : 2008-06-25 00:44:32
       Bugs : 452497 - phpMyAdmin < 2.11.7-rc2 contains non-documented security bug
Description : This update solves PMASA-2008-4 (phpMyAdmin security
            : announcement) from 2008-06-23: XSS on plausible
            : insecure PHP installation; see http://www.phpmyadm
            : in.net/home_page/security.php?issue=PMASA-2008-4
            : - [interface] New field cannot be auto-increment
            : and primary key  - [dbi] Incorrect interpretation
            : for some mysqli field flags  - [display] part 1:
            : do not display a TEXT utf8_bin as BLOB (fixed for
            : mysqli extension only) - [interface] sanitize the
            : after_field parameter, thanks to Norman Hippert -
            : [structure] do not remove the BINARY attribute in
            : drop-down  - [session] Overriding
            : session.hash_bits_per_character  - [interface]
            : sanitize the table comments in table print view,
            : thanks to Norman Hippert - [general]
            : Auto_Increment selected for TimeStamp by Default -
            : [display] No tilde for InnoDB row counter when we
            : know it for sure, thanks to Vladyslav Bakayev -
            : dandy76  - [display] alt text causes duplicated
            : strings - [interface] Cannot upload BLOB into
            : existing row  - [export] HTML in exports getting
            : corrupted, thanks to Jason Judge - jasonjudge -
            : [interface] BINARY not treated as BLOB:
            : update/delete issues  - [general] protection
            : against XSS when register_globals is on and
            : .htaccess has no effect, thanks to Tim Starling -
            : [export] Firefox 3 and .sql.gz (corrupted); detect
            : Gecko 1.9, thanks to Juergen Wind
      Files : phpMyAdmin-2.11.7-1.fc9.noarch.rpm
            : phpMyAdmin-2.11.7-1.fc9.src.rpm
info-sec done
Updating only for security reasons.
# yum --security update
...
Limiting packages to security relevant ones

Needed 7 (+7 related) of 42 transaction packages, for security
--> Running transaction check
---> Package clamav-server.i386 0:0.93.1-1.fc9 set to be updated
---> Package clamav-lib.i386 0:0.93.1-1.fc9 set to be updated
---> Package clamav-update.i386 0:0.93.1-1.fc9 set to be updated
---> Package clamav-server-sysv.i386 0:0.93.1-1.fc9 set to be updated
---> Package clamav-data.i386 0:0.93.1-1.fc9 set to be updated
---> Package clamav.i386 0:0.93.1-1.fc9 set to be updated
---> Package clamav-filesystem.i386 0:0.93.1-1.fc9 set to be updated
--> Finished Dependency Resolution

Dependencies Resolved 

=============================================================================

 Package                 Arch       Version          Repository        Size 
=============================================================================
Updating:
 clamav                  i386       0.93.1-1.fc9     updates           650 k
 clamav-data             i386       0.93.1-1.fc9     updates            14 M
 clamav-filesystem       i386       0.93.1-1.fc9     updates            19 k
 clamav-lib              i386       0.93.1-1.fc9     updates           301 k
 clamav-server           i386       0.93.1-1.fc9     updates            61 k
 clamav-server-sysv      i386       0.93.1-1.fc9     updates            18 k
 clamav-update           i386       0.93.1-1.fc9     updates            65 k

Transaction Summary
=============================================================================
Install      0 Package(s)         
Update       7 Package(s)         
Remove       0 Package(s)          

Total download size: 15 M
Is this ok [y/N]: y