yum command

-------------------------------
-------------------------------
# yum be locked
rm -f /var/run/yum.pid

# -bash: yum-config-manager: command not found
yum install yum-utils

@ yumdownloader -y --resolve --destdir=/root/test ABC

yum provides xxx

# download rpm & dependent
repotrack libnsl

# install all
yum localinstall *.rpm

# install someone
rpm -ivh libnsl-2.28-251.el8_10.13.x86_64.rpm

# Kernel available
yum list available kernel

# yum install $(cat $(hostname)_$(date +"%Y%m%d")_installed.txt)
# yum install -y $(cat $(hostname)_installed.txt)
# yum install -y $(cat $(hostname)_$(date +"%Y%m%d")_installed.txt)

subscription-manager unregister
subscription-manager clean

#verify
yum install libnsl
# yum update" has "SSL certificate problem"
Curl error (60): SSL peer certificate or SSH remote key was not OK for https://mirrors.centos.org/metalink?repo=centos-baseos-9-stream&arch=x86_64&protocol=https,http [Scert certate ppervate forrert. 'baseos': Cannot prepare internal mirrorlist: Curl error (60): SSL peer certificate or SSH remote key was not OK
for https://mirrors.centos.org/metalink?repo=centos-baseos-9-stream&arch=x86_64-fatet . ]
# solving
vim /etc/yum.conf
add sslverify=false

# enable & disable repo list
yum-config-manager --disable <repo id>
yum-config-manager --disable RHEL81_DVD
yum-config-manager --enable RHEL81_DVD

# Skip ssl Check:
echo ‘add sslverify=false’ >> /etc/yum.conf

# yum log:
cat /var/log/dnf.log

# RHSA+RHBA+RHEA list
yum list-sec |wc -l
yum list-sec

yum list-sec |grep Low
yum list-sec |grep Mod
yum list-sec |grep Impo
yum list-sec |grep Crit

yum list-sec |grep Low |wc -l
yum list-sec |grep Mod |wc -l
yum list-sec |grep Impo |wc -l
yum list-sec |grep Crit |wc -l

# rpm
yum check-update --security

# installed
yum list-sec installed | wc -l

# minimal update
yum update-minimal --advisory RHSA-2018:1965 --security
yum updateinfo --advisory RHSA-2024:7848

uname -r
yum update --security
reboot

# RHSA list only
yum updateinfo list sec |wc -l

RHEL 8 example:
yum updateinfo --list

RHEL 7 example:
yum updateinfo list | grep glibc
RHSA-2019:2118 Moderate/Sec. glibc-2.17-292.el7.x86_64

RHEL 8 example:
yum updateinfo --list

# All list
yum updateinfo list cves |wc -l
yum updateinfo list cves

yum updateinfo list security installed
yum updateinfo list --cve CVE-2018-1111
yum update --cve CVE-2018-1111

# Inventory RHSA+RHBA+RHEA echo " " > .bash_history; history -c
yum updateinfo |less -NFiX
1 Last metadata expiration check: 2:29:55 ago on Tue 21 Jan 2025 07:16:52 AM HKT.
2 Updates Information Summary: available
3 39 Security notice(s)
4 15 Important Security notice(s)
5 19 Moderate Security notice(s)
6 5 Low Security notice(s)
7 42 Bugfix notice(s)
8 2 Enhancement notice(s)
yum updateinfo list | grep glibc
RHSA-2019:2118 Moderate/Sec. glibc-2.17-292.el7.x86_64

# Inventory RHSA only
yum updateinfo --security
yum updateinfo --security |less -NFiX
1 Last metadata expiration check: 2:30:18 ago on Tue 21 Jan 2025 07:16:52 AM HKT.
2 Updates Information Summary: available
3 39 Security notice(s)
4 15 Important Security notice(s)
5 19 Moderate Security notice(s)
6 5 Low Security notice(s)
-------------------------------
-------------------------------