Login
[x]
Log in using an account from:
Fedora Account System
Red Hat Associate
Red Hat Customer
Or login using a Red Hat Bugzilla account
Forgot Password
Login:
Hide Forgot
Create an Account
Red Hat Bugzilla – Attachment 942713 Details for
Bug 1124344
yum --security update doesn't work on non-fedora repos. This limitation is probably undocumented.
[?]
New
Simple Search
Advanced Search
My Links
Browse
Requests
Reports
Current State
Search
Tabular reports
Graphical reports
Duplicates
Other Reports
User Changes
Plotly Reports
Bug Status
Bug Severity
Non-Defaults
|
Product Dashboard
Help
Page Help!
Bug Writing Guidelines
What's new
Browser Support Policy
5.0.4.rh83 Release notes
FAQ
Guides index
User guide
Web Services
Contact
Legal
This site requires JavaScript to be enabled to function correctly, please enable it.
[patch]
Proposed patch
1124344.patch (text/plain), 2.36 KB, created by
Eric Christensen
on 2014-09-30 13:35:18 UTC
(
hide
)
Description:
Proposed patch
Filename:
MIME Type:
Creator:
Eric Christensen
Created:
2014-09-30 13:35:18 UTC
Size:
2.36 KB
patch
obsolete
>From 35c57d549da73a90d7a04f256a90345c51d15aec Mon Sep 17 00:00:00 2001 >From: Eric H Christensen <sparks@redhat.com> >Date: Tue, 30 Sep 2014 09:32:07 -0400 >Subject: [PATCH] Reworded the yum-plugin-security portion and added a > notification regarding this functionality not working in third-party > repositories (BZ 1124344) > >--- > en-US/CVE.xml | 5 +++-- > 1 file changed, 3 insertions(+), 2 deletions(-) > >diff --git a/en-US/CVE.xml b/en-US/CVE.xml >index 73e6ce8..3739575 100644 >--- a/en-US/CVE.xml >+++ b/en-US/CVE.xml >@@ -3,7 +3,7 @@ > ]> > > <chapter id="chap-Security_Guide-CVE"> >- <title>Common Vulnerabilities and Exposures</title> >+ <title>Common Vulnerabilities and Exposures (CVEs)</title> > <para> > The Common Vulnerabilities and Exposures or CVE system provides a reference method for publicly-known information security vulnerabilities and exposures. ITRE Corporation maintains the system, with funding from the National Cyber Security Division of the United States Department of Homeland Security. > </para> >@@ -13,8 +13,9 @@ > <section id="sect-Security_Guide-CVE-yum_plugin"> > <title>YUM Plugin</title> > <para> >- The <package>yum-plugin-security</package> package is a feature of &PRODUCT;. If installed, the yum module provided by this package can be used to limit yum to retrieve only security-related updates. It can also be used to provide information about which Red Hat advisory, which bug in Red Hatâs Bugzilla database, or which CVE number from MITREâs Common Vulnerabilities and Exposures directory is addressed by a package update. >+ The <package>yum-plugin-security</package> package allows the administrator to only see what updates are security updates (no bugfix or enhancement updates). It can also be used to provide information about which &PRODUCT; advisory, which bug in Red Hatâs Bugzilla database, or which CVE number is addressed by a package update. > </para> >+ <important><para>This feature currently only works on Fedora, Red Hat, and EPEL repositories. Other repositories may or may not provide the necessary flags on their packages to allow such filtering. When using third-party repos it's important to check for updates as using this plugin may allow some security updates to be missed.</para></important> > <para> > Enabling these features is as simple as running the <command>yum install yum-plugin-security</command> command. > </para> >-- >1.9.3 >
<b>You cannot view the attachment while viewing its details because your browser does not support IFRAMEs. <a href="attachment.cgi?id=942713">View the attachment on a separate page</a>.</b>
View Attachment As Diff
View Attachment As Raw
Actions:
View
|
Diff
Attachments on
bug 1124344
: 942713