[securityguide] Reworded the yum-plugin-security portion and added a notification regarding this functionality not w

Eric Christensen sparks at fedoraproject.org
Tue Sep 30 16:09:03 UTC 2014 

commit cdaaa5bd8d455cc72c2081d0486cc1bd3813f991
Author: Eric H Christensen <sparks at redhat.com>
Date:   Tue Sep 30 09:32:07 2014 -0400

    Reworded the yum-plugin-security portion and added a notification regarding this functionality not working in third-party repositories (BZ 1124344)
    
    Signed-off-by: Eric H Christensen <sparks at redhat.com>

 en-US/CVE.xml |    5 +++--
 1 files changed, 3 insertions(+), 2 deletions(-)
---
diff --git a/en-US/CVE.xml b/en-US/CVE.xml
index 73e6ce8..3739575 100644
--- a/en-US/CVE.xml
+++ b/en-US/CVE.xml
@@ -3,7 +3,7 @@
 ]>
 
 <chapter id="chap-Security_Guide-CVE">
-	<title>Common Vulnerabilities and Exposures</title>
+	<title>Common Vulnerabilities and Exposures (CVEs)</title>
 	<para>
 	The Common Vulnerabilities and Exposures or CVE system provides a reference method for publicly-known information security vulnerabilities and exposures. ITRE Corporation maintains the system, with funding from the National Cyber Security Division of the United States Department of Homeland Security.
 	</para>
@@ -13,8 +13,9 @@
         <section id="sect-Security_Guide-CVE-yum_plugin">
         <title>YUM Plugin</title>
 		<para>
-		The <package>yum-plugin-security</package> package is a feature of &PRODUCT;. If installed, the yum module provided by this package can be used to limit yum to retrieve only security-related updates. It can also be used to provide information about which Red Hat advisory, which bug in Red Hat’s Bugzilla database, or which CVE number from MITRE’s Common Vulnerabilities and Exposures directory is addressed by a package update.
+		The <package>yum-plugin-security</package> package allows the administrator to only see what updates are security updates (no bugfix or enhancement updates).  It can also be used to provide information about which &PRODUCT; advisory, which bug in Red Hat’s Bugzilla database, or which CVE number is addressed by a package update.
 		</para>
+		<important><para>This feature currently only works on Fedora, Red Hat, and EPEL repositories.  Other repositories may or may not provide the necessary flags on their packages to allow such filtering.  When using third-party repos it's important to check for updates as using this plugin may allow some security updates to be missed.</para></important>
 		<para>
 		Enabling these features is as simple as running the <command>yum install yum-plugin-security</command> command.
 		</para>

More information about the docs-commits mailing list