Install only the security updates

Hi guys,

I’m currently using OpenSUSE 12.3 on my notebook, where I do all my work, so, when some problematic upgrade takes place I loose a lot of time correcting it.

Then I ask to you, there’s any way to only install the security upgrade and let the non critical upgrade to another time?

Thanks in advance,
LMNM.

That’s why I always disable Apper, and do updates manually with Yast. It’s just does “needed” security updates. I forget how I did that, if no one else offers the information, I can look for it. I’m sure others will have good ideas, too.

There is no need to disable Apper, just don’t launch it and don’t apply its updates.

Instead, launch Yast => Online Update (You will be required to enter the root password for the process)

When it checks for updates and offers a list, you can deselect the non-essential updates, then Apply.

Only security patches: zypper patch

Full update: zypper up

Remember though, zypper up, observes any switching you have in place such as on Packman

Some patches, ‘online update’, may conflict with switching you have in place

No. That will install all patches, both security and recommended. If you really intend to install security patches only - “zypper patch -g security”.

On 2014-02-08 05:56, arvidjaar wrote:
>
> caf4926;2623061 Wrote:
>> Only security patches: zypper patch
>
> No. That will install all patches, both security and recommended. If you
> really intend to install security patches only - “zypper patch -g
> security”.

And even those break things.

For example, the recent kernel patch, which AFAIK is a security patch,
broke virtualbox kernel modules. Now there is another update for those,
but it took some hours.


Cheers / Saludos,

Carlos E. R.

(from 13.1 x86_64 “Bottle” (Minas Tirith))

If I don’t disable it, it inteferes with Yast. It’s just easier for me this way.

P.S. - When I said I forgot how I did that, I meant how I disabled Apper. Looking at my first reply, I realized I worded it wrong.

I’d to thanks everybody who tried to help in this thread.

Even though the use of zypper patch --category is not bullet proof as presented above, it seems to be much more secure than an wild zypper up,i.e, updating bumblebee, which in almost every update I’ve to fix it.

I’m summarizing the most interesting commands I found looking in the man pages and in the above thread:

List all available patches:
zypper list-patches

List only the security patches
zypper list-patches --category security

Install only the security patches
zypper patch --category security

Thank you guys!

On 2014-02-11 00:36, leomarques wrote:
> Even though the use of zypper patch --category is not bullet proof as
> presented above, it seems to be much more secure than an wild zypper
> up,i.e, updating bumblebee, which in almost every update I’ve to fix it.

You can read forums and mail lists, and see if people complain about
some update borking their machine. If you wait a week or two before
installing updates, you can stay out of most problems by reading about
them first :slight_smile:

But of course, this needs time investment on your part…


Cheers / Saludos,

Carlos E. R.

(from 13.1 x86_64 “Bottle” (Minas Tirith))