On 09/09/2015 12:32 PM, Raymond Durand wrote: > Ok thanks. > # yum updateinfo list --security > > should work and return the security updates with other references then, > right? No. We don't validate the CVEs, so we also don't include the repodata, as that would lead people to think we do. -- Jim Perrin The CentOS Project | http://www.centos.org twitter: @BitIntegrity | GPG Key: FA09AD77