Red Hat Bugzilla – Bug 493095
RFE: Warn the packager if the updateinfo description implies it's a security bug, but security checkbox not set
Last modified: 2016-10-18 11:31:54 EDT
Description of problem:
New upstream release containing CVE-2009-0784 security fix,
...but "yum --security update" doesn't find it because it doesn't have the security flag set. I assume this was just a typo. So I'd like to request that the update app. looks for "security" and "cve" and if it finds either then asks the user if they are sure they don't want to mark it as a security update.
Thanks for the RFE! I've filed this upstream for you so we can track it there.