Package Updates as part of yum update security

[jay.chn]

Our vulnerability scanner has identified the following packages as vulnerable with Severity 4 on Centos 7.6

CentOS Security Update for systemd (CESA-2019:0049)
CentOS Security Update for perl (CESA-2019:0109)
CentOS Security Update for kernel (CESA-2019:0163)
CentOS Security Update for systemd (CESA-2019:0368)
CentOS Security Update for polkit (CESA-2019:0230)

doing a yum update security does not show any packages that are required to be updated.

[root@jay-test-centos76 ~]# yum update security
Loaded plugins: fastestmirror, langpacks
Determining fastest mirrors
base | 3.6 kB 00:00:00
extras | 3.4 kB 00:00:00
openlogic | 2.9 kB 00:00:00
updates | 3.4 kB 00:00:00
(1/5): base/7/x86_64/group_gz | 166 kB 00:00:00
(2/5): extras/7/x86_64/primary_db | 187 kB 00:00:00
(3/5): openlogic/7/x86_64/primary_db | 90 kB 00:00:00
(4/5): updates/7/x86_64/primary_db | 3.3 MB 00:00:00
(5/5): base/7/x86_64/primary_db | 6.0 MB 00:00:00
No Match for argument: security
No package security available.
No packages marked for update
[root@jay-test-centos76 ~]#


shouldn't the packages be updated as part of yum update security? the regular yum update does show package updates for all packages and gets updated accordingly.

please let me know how to get these security updates for the above packages.

thanks
jay

[TrevorH]

CentOS does not provide the necessary metadata in the repos for yum-plugin-security to function. It does not work on CentOS.

[avij]

please let me know how to get these security updates for the above packages.

Run yum update

[jay.chn]

Thanks