更新时间:2025-04-01 GMT+08:00
查询安全更新
命令格式:yum updateinfo <command> [option]
- 执行yum updateinfo命令,查询全部可用的安全更新信息。
[root@localhost ~]# yum updateinfo Last metadata expiration check: 0:03:05 ago on Thu 08 Sep 2022 05:30:23 PM CST. Updates Information Summary: available 12 Security notice(s) 4 Critical Security notice(s) 6 Important Security notice(s) 2 Moderate Security notice(s)
- <command>的主要参数。
- list:查询当前可用的安全更新列表。
[root@localhost ~]# yum updateinfo list Last metadata expiration check: 0:03:32 ago on Thu 08 Sep 2022 05:30:23 PM CST. HCE2-SA-2022-0006 Critical/Sec. curl-7.79.1-2.h6.hce2.x86_64 HCE2-SA-2022-0011 Moderate/Sec. gnupg2-2.2.32-1.h6.hce2.x86_64 HCE2-SA-2022-0002 Important/Sec. kernel-5.10.0-60.18.0.50.h425_2.hce2.x86_64
- info <SA ID>:查询指定SA ID的安全更新详情。
[root@localhost ~]# yum updateinfo info HCE2-SA-2024-0262 Last metadata expiration check: 0:01:07 ago on Wed 26 Mar 2025 11:08:19 AM CST. =============================================================================== An update for wget is now available for HCE 2.0 =============================================================================== Update ID: HCE2-SA-2024-0262 Type: security Updated: 2024-09-23 18:09:48 CVEs: CVE-2024-38428 Description: Security Fix(es): : : url.c in GNU Wget through 1.24.5 mishandles semicolons in the userinfo subcomponent of a URI, and thus there may be insecure behavior in which data that was supposed to be in the userinfo subcomponent is misinterpreted to be part of the host subcomponent. (CVE-2024-38428) Severity: Critical
- list:查询当前可用的安全更新列表。
- [option]的主要参数。
- --sec-severity={Critical,Important,Moderate,Low}:指定安全更新级别,{}中的安全更新等级参数可任意组合。
例如,使用--sec-severity=Critical查询某个安全更新级别。
[root@localhost ~]# yum updateinfo list --sec-severity=Critical Last metadata expiration check: 0:10:15 ago on Thu 08 Sep 2022 05:30:23 PM CST. HCE2-SA-2022-0006 Critical/Sec. curl-7.79.1-2.h6.hce2.x86_64 HCE2-SA-2022-0003 Critical/Sec. libarchive-3.5.2-1.h2.hce2.x86_64 HCE2-SA-2022-0006 Critical/Sec. libcurl-7.79.1-2.h6.hce2.x86_64 ……
例如,使用--sec-severity={Critical,Moderate}查询多个安全更新级别。
[root@localhost ~]# yum updateinfo list --sec-severity={Critical,Moderate} Last metadata expiration check: 0:11:07 ago on Thu 08 Sep 2022 05:30:23 PM CST. HCE2-SA-2022-0006 Critical/Sec. curl-7.79.1-2.h6.hce2.x86_64 HCE2-SA-2022-0011 Moderate/Sec. gnupg2-2.2.32-1.h6.hce2.x86_64 HCE2-SA-2022-0003 Critical/Sec. libarchive-3.5.2-1.h2.hce2.x86_64 ……
- --cve=<CVE ID>:查询指定的CVE ID。
[root@localhost ~]# yum updateinfo info --cve=CVE-2024-38428 Last metadata expiration check: 0:11:10 ago on Wed 26 Mar 2025 11:08:19 AM CST. =============================================================================== An update for wget is now available for HCE 2.0 =============================================================================== Update ID: HCE2-SA-2024-0262 Type: security Updated: 2024-09-23 18:09:48 CVEs: CVE-2024-38428 Description: Security Fix(es): : : url.c in GNU Wget through 1.24.5 mishandles semicolons in the userinfo subcomponent of a URI, and thus there may be insecure behavior in which data that was supposed to be in the userinfo subcomponent is misinterpreted to be part of the host subcomponent. (CVE-2024-38428) Severity: Critical
- --sec-severity={Critical,Important,Moderate,Low}:指定安全更新级别,{}中的安全更新等级参数可任意组合。

更多详细信息,请使用yum updateinfo --help获取帮助信息。
父主题: 对HCE进行安全更新