Skip to end of metadata
Go to start of metadata

Security Updates

CoprHD appliances do not install new packages automatically and neither new security fixes that might be available for the operating system. However, security updates can be installed from openSUSE repositories and it is possible to update the system using zypper command lines. Choose steps from A unless there is a strong reason for not updating the system with all security packages, otherwise chose B, C or D to apply a smaller set of security updates. Run steps from E to check if the system requires any new security updates.

Make sure you have the oss-update repository added before applying any security fixes:

zypper --non-interactive addrepo --no-check --name suse-13.2-oss-update suse-13.2-oss-update
zypper clean
zypper refresh

A. Update all security packages for the system:

zypper refresh
zypper patch -g security --no-recommends

It might be required a reboot if a component such as the kernel is updated. Follow the instructions from zypper command line utility accordingly.

B. Update all security packages for the system (skipping patches that require user interaction):

zypper refresh
zypper --non-interactive --non-interactive-include-reboot-patches patch -g security --no-recommends

C. Update the system to fix a single CVE (example:

zypper refresh
zypper patch --cve CVE-2015-7547 --no-recommends

D. Update the system up until a certain date (example: 2016-01-01):

zypper refresh
zypper patch --details -g security --no-recommends --date 2016-01-01

E. Verify if the system has all security packages installed:

zypper refresh
zypper patch-check

Downgrading packages

To downgrade a package to an older version, the following steps can be followed. The example below will search for package versions available and then force install it to any of the versions from the repository:

zypper refresh
zypper search --details docker
zypper install --oldpackage docker=1.8.3-43.1