Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-ID: <20170628202221.6bvpazce7k2hidii@perpetual.pseudorandom.co.uk>
Date: Wed, 28 Jun 2017 21:22:21 +0100
From: Simon McVittie <smcv@...ian.org>
To: oss-security@...ts.openwall.com
Subject: Re: accepting new members to (linux-)distros lists

On Wed, 28 Jun 2017 at 22:02:40 +0200, Solar Designer wrote:
> Neither you nor others you inform may use the information for anything
> other than getting the issue fixed for your distro's users [etc.]

To be clear, does this forbid bringing upstream maintainers into the loop
to fix vulnerabilities or review fixes in the code that they maintain?

(If it does, that seems likely to lead to bugs in the deployed fixes.)

    S

Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.