search

matteocorti / nagios_plugins

18 stars 7 forks source link

A bug in yum for centos/rhel 6.7 breaks check_updates --security-only option #141

Closed matteocorti closed 8 years ago

matteocorti commented 8 years ago

Original reporter: **

There was a change to:

  yum --security check-update

output format in 6.7 release of RHEL/centos.

It causes nagios plugin check_updates to report normal updates as security updates.

RHEL bug: https://bugzilla.redhat.com/show_bug.cgi?id=1234787

Not really a check_updates bug, but in theory check_updates could be patched to be smarter about catching "No packages needed for security" and then ignoring the list of updates under certain circumstances. I know that doesn't work in multiple locales. Nice to have. Not sure when RHEL will fix the issue so check_updates is really noisy at the moment.

[root@monitor-02 ~]# yum --security check-update
Loaded plugins: fastestmirror, presto, security
Loading mirror speeds from cached hostfile
 - atomic: mirror1.34sp.com
 - base: ftp.heanet.ie
 - epel: mirrors.coreix.net
 - extras: ftp.heanet.ie
 - updates: ftp.heanet.ie
Limiting package lists to security relevant ones
No packages needed for security; 7 packages available

php.i686                                                     5.4.44-50.el6.art                                              atomic
php-cli.i686                                                 5.4.44-50.el6.art                                              atomic
php-common.i686                                              5.4.44-50.el6.art                                              atomic
php-gd.i686                                                  5.4.44-50.el6.art                                              atomic
php-mysql.i686                                               5.4.44-50.el6.art                                              atomic
php-pdo.i686                                                 5.4.44-50.el6.art                                              atomic
php-process.i686                                             5.4.44-50.el6.art                                              atomic
[root@monitor-02 ~]#
[root@monitor-02 ~]# /usr/local/nagios/libexec/check_updates-1.6.10/check_updates --security-only --no-boot-check --timeout=120 --verbose
Checking a linux system
Running on CentOS release 6.7 (Final)
Using Yum
Security plugin installed
Security updates available
Security updates available
CHECK_UPDATES CRITICAL - 7 security updates and 7 non-critical updates available | total_updates=7;0;0 security_updates=7;0;0
php.i686 (security)
php-cli.i686 (security)
php-common.i686 (security)
php-gd.i686 (security)
php-mysql.i686 (security)
php-pdo.i686 (security)
php-process.i686 (security)
php.x86_64
php-cli.x86_64
php-common.x86_64
php-gd.x86_64
php-mysql.x86_64
php-pdo.x86_64
php-process.x86_64
[root@monitor-02 ~]#
matteocorti commented 8 years ago

Original reporter: Matt P

How do I remove my email from public listing of this ticket? Really don't need the spam from crawlers. Would like to get email updates however if possible.

matteocorti commented 8 years ago

This issue was moved to matteocorti/check_updates#1