Re: Proper procedure for reporting possible securityvulnerabilities?

From: Diego Calleja
Date: Mon Jan 10 2005 - 19:01:39 EST

Next message: Christoph Lameter: "Prezeroing V4 [1/4]: Arch specific page zeroing during page fault"
Previous message: Dave: "clean way to support >32bit addr on 32bit CPU"
In reply to: Florian Weimer: "Re: Proper procedure for reporting possible security vulnerabilities?"
Next in thread: Barry K. Nathan: "Re: Proper procedure for reporting possible security vulnerabilities?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

El Mon, 10 Jan 2005 15:42:11 -0600 Steve Bergman <steve@xxxxxxxx> escribió:

> Actually I am having a discussion with a Pax Team member about how the
> recent exploits discovered by the grsecurity guys should have been
> handled. They clam that they sent email to Linus and Andrew and did not
> receive a response for 3 weeks, and that is why they released exploit
> code into the wild.

They could have mailed to *THIS* mailing list, so anyone can make a patch.
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Christoph Lameter: "Prezeroing V4 [1/4]: Arch specific page zeroing during page fault"
Previous message: Dave: "clean way to support >32bit addr on 32bit CPU"
In reply to: Florian Weimer: "Re: Proper procedure for reporting possible security vulnerabilities?"
Next in thread: Barry K. Nathan: "Re: Proper procedure for reporting possible security vulnerabilities?"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]