clarify NEWS

author: Simon McVittie <simon.mcvittie@collabora.co.uk> 2015-02-19 14:47:30 +0000
committer: Simon McVittie <simon.mcvittie@collabora.co.uk> 2015-02-19 14:47:30 +0000
commit: 65a84fd56d1f04b7c390aaf45384f188c74e6d8a (patch)
tree: 0169284a09bae5976e818f9d3cd28389fd2d3d8a /NEWS
parent: 2d38407312d259d8028d84d859545aaaa8e8e099 (diff)
download: dbus-65a84fd56d1f04b7c390aaf45384f188c74e6d8a.tar.gz
1 files changed, 3 insertions, 2 deletions
diff --git a/NEWS b/NEWS
index 9edde901..910694a1 100644
--- a/NEWS
+++ b/NEWS
@@ -10,7 +10,8 @@ The “monster lasagna” release.
 
 Dependencies:
 
-• Ducktype and yelp-tools are now required to build complete documentation.
+• Ducktype and yelp-tools are now required to build complete documentation
+  (they are optional for normal builds).
 
 Enhancements:
 
@@ -65,7 +66,7 @@ Security fixes merged from 1.8.16:
   the actual service activation and causing an error reply
   to be sent back when service auto-activation was requested.
   This does not prevent the real service from being started,
-  so it only works while the real service is not running.
+  so the attack only works while the real service is not running.
   (CVE-2015-0245, fd.o #88811; Simon McVittie)
 
 Enhancements:
author	Simon McVittie <simon.mcvittie@collabora.co.uk>	2015-02-19 14:47:30 +0000
committer	Simon McVittie <simon.mcvittie@collabora.co.uk>	2015-02-19 14:47:30 +0000
commit	65a84fd56d1f04b7c390aaf45384f188c74e6d8a (patch)
tree	0169284a09bae5976e818f9d3cd28389fd2d3d8a /NEWS
parent	2d38407312d259d8028d84d859545aaaa8e8e099 (diff)
download	dbus-65a84fd56d1f04b7c390aaf45384f188c74e6d8a.tar.gz