On Thu, Jan 28, 2016 at 8:46 AM, Jamie Nguyen <j@jamielinux.com> wrote:

There isn't any way to ensure users read upgrade notes, except between
new versions of Fedora/RHEL (as major changes would be expected). This
will inevitably bite someone when their Nginx configuration isn't valid
after the update, which could for example be via yum-cron.

That unfortunately is true (even in the case new versions); however whether or

not someone reads or doesn't isn't your problem. You're trying to fix a security

vulnerability (kudos to you). If doing so creates fallout, so be it. Better someone

has to go in and make modifications to get it working than for their system to be

compromised by a security issue.