1 files changed, 3 insertions, 0 deletions
diff --git a/documentation/dev-manual/vulnerabilities.rst b/documentation/dev-manual/vulnerabilities.rst
index 71111bb3e2..c492b62ffd 100644
--- a/documentation/dev-manual/vulnerabilities.rst
+++ b/documentation/dev-manual/vulnerabilities.rst
@@ -164,6 +164,9 @@ the :term:`CVE_STATUS` variable flag with appropriate reason which is mapped to
 As mentioned previously, if data in the CVE database is wrong, it is recommend to fix those
 issues in the CVE database directly.
+Note that if there are many CVEs with the same status and reason, those can be
+shared by using the :term:`CVE_STATUS_GROUPS` variable.
 Recipes can be completely skipped by CVE check by including the recipe name in
 the :term:`CVE_CHECK_SKIP_RECIPE` variable.

diff --git a/documentation/dev-manual/vulnerabilities.rst b/documentation/dev-manual/vulnerabilities.rst index 71111bb3e2..c492b62ffd 100644 --- a/documentation/dev-manual/vulnerabilities.rst +++ b/documentation/dev-manual/vulnerabilities.rst
@@ -164,6 +164,9 @@ the :term:`CVE_STATUS` variable flag with appropriate reason which is mapped to
164	As mentioned previously, if data in the CVE database is wrong, it is recommend to fix those	164	As mentioned previously, if data in the CVE database is wrong, it is recommend to fix those
165	issues in the CVE database directly.	165	issues in the CVE database directly.
166		166
		167	Note that if there are many CVEs with the same status and reason, those can be
		168	shared by using the :term:`CVE_STATUS_GROUPS` variable.
		169
167	Recipes can be completely skipped by CVE check by including the recipe name in	170	Recipes can be completely skipped by CVE check by including the recipe name in
168	the :term:`CVE_CHECK_SKIP_RECIPE` variable.	171	the :term:`CVE_CHECK_SKIP_RECIPE` variable.
169		172