'For auditing purpose, need to provide all the patches applied through zypper patch command. How to list all the patches installed in last 3 months
We are using below command to install patches regularly
zypper patch -g security
Now we need to audit all the installed patches in last 3 months. Is there a way to get a list of all installed patches in the system. We are using Suse 12 Sp5. Thanks in advance
Solution 1:[1]
To list all available patches, you could use
zypper search --type patch
and to limit these results to installed patches only, please use
zypper search --type patch --installed-only
Due to missing hints in the docs, I doubt that it's currently possible to limit the results to "security" patches only, so checking the type of a patch would need to be done in a separate step.
Solution 2:[2]
tux > zypper list-patches --all --cve
Issue | No. | Patch | Category | Severity | Status
------+---------------+-------------------+-------------+-----------+----------
cve | CVE-2015-0287 | SUSE-SLE-Module.. | recommended | moderate | needed
cve | CVE-2014-3566 | SUSE-SLE-SERVER.. | recommended | moderate | not needed
[...]
Source is chapter 6.1.3.2 / page 49 of Administration Guide - SUSE Linux Enterprise Server 12 SP5
Not sure of this apply to opensuse also.
Sources
This article follows the attribution requirements of Stack Overflow and is licensed under CC BY-SA 3.0.
Source: Stack Overflow
| Solution | Source |
|---|---|
| Solution 1 | CupRacer |
| Solution 2 | Suraj Rao |