The rpm command gives you the version history & changelog of a package , when you query the package with –changelog option.
Here is an example :
[root@linux-cloud ~]# rpm -q –changelog gzip
* Thu May 29 2008 Karanbir Singh <> 1.3.5-10.el5.centos
– Roll in CentOS Branding
* Wed Jan 16 2008 Ivana Varekova <> 1.3.5-10.el5
– Resolves: #247269
gzip munges directory mtime with “-r”
* Fri Dec 15 2006 Ivana Varekova <> – 1.3.5-9.el5
– fix regression in unpack algorithm
Resolves: #219539
* Mon Oct 02 2006 Jesse Keating <> – 1.3.5-9
– rebuilt for unwind info generation, broken in gcc-4.1.1-21
* Thu Sep 21 2006 Ivana Varekova <> 1.3.5-8
– fix bug 204676 (patches by Tavis Ormandy)
– cve-2006-4334 – null dereference problem
– cve-2006-4335 – buffer overflow problem
– cve-2006-4336 – buffer underflow problem
– cve-2006-4338 – infinite loop problem
– cve-2006-4337 – buffer overflow problem
* Sat Jul 15 2006 Karsten Hopp <> 1.3.5-7
– buildrequire texinfo, otherwise gzip.info will be empty
* Thu Jul 13 2006 Jesse Keating <> – 1.3.5-6.2.2
– rebuild
…