Install only the security updates

leomarques · February 8, 2014, 3:34am

Hi guys,

I’m currently using OpenSUSE 12.3 on my notebook, where I do all my work, so, when some problematic upgrade takes place I loose a lot of time correcting it.

Then I ask to you, there’s any way to only install the security upgrade and let the non critical upgrade to another time?

Thanks in advance,
LMNM.

HighBloodSugar · February 8, 2014, 3:39am

That’s why I always disable Apper, and do updates manually with Yast. It’s just does “needed” security updates. I forget how I did that, if no one else offers the information, I can look for it. I’m sure others will have good ideas, too.

Fraser_Bell · February 8, 2014, 5:11am

There is no need to disable Apper, just don’t launch it and don’t apply its updates.

Instead, launch Yast => Online Update (You will be required to enter the root password for the process)

When it checks for updates and offers a list, you can deselect the non-essential updates, then Apply.

caf4926 · February 8, 2014, 5:33am

Only security patches: zypper patch

Full update: zypper up

Remember though, zypper up, observes any switching you have in place such as on Packman

Some patches, ‘online update’, may conflict with switching you have in place

arvidjaar · February 8, 2014, 5:47am

No. That will install all patches, both security and recommended. If you really intend to install security patches only - “zypper patch -g security”.

robin_listas · February 8, 2014, 10:54am

On 2014-02-08 05:56, arvidjaar wrote:
>
> caf4926;2623061 Wrote:
>> Only security patches: zypper patch
>
> No. That will install all patches, both security and recommended. If you
> really intend to install security patches only - “zypper patch -g
> security”.

And even those break things.

For example, the recent kernel patch, which AFAIK is a security patch,
broke virtualbox kernel modules. Now there is another update for those,
but it took some hours.

–
Cheers / Saludos,

Carlos E. R.

(from 13.1 x86_64 “Bottle” (Minas Tirith))

HighBloodSugar · February 8, 2014, 7:05pm

If I don’t disable it, it inteferes with Yast. It’s just easier for me this way.

HighBloodSugar · February 8, 2014, 9:36pm

P.S. - When I said I forgot how I did that, I meant how I disabled Apper. Looking at my first reply, I realized I worded it wrong.

leomarques · February 11, 2014, 12:28am

I’d to thanks everybody who tried to help in this thread.

Even though the use of zypper patch --category is not bullet proof as presented above, it seems to be much more secure than an wild zypper up,i.e, updating bumblebee, which in almost every update I’ve to fix it.

I’m summarizing the most interesting commands I found looking in the man pages and in the above thread:

List all available patches:
zypper list-patches

List only the security patches
zypper list-patches --category security

Install only the security patches
zypper patch --category security

Thank you guys!

robin_listas · February 11, 2014, 1:14am

On 2014-02-11 00:36, leomarques wrote:
> Even though the use of zypper patch --category is not bullet proof as
> presented above, it seems to be much more secure than an wild zypper
> up,i.e, updating bumblebee, which in almost every update I’ve to fix it.

You can read forums and mail lists, and see if people complain about
some update borking their machine. If you wait a week or two before
installing updates, you can stay out of most problems by reading about
them first

But of course, this needs time investment on your part…

–
Cheers / Saludos,

Carlos E. R.

(from 13.1 x86_64 “Bottle” (Minas Tirith))