oss-sec mailing list archives

Re: Reporting and disclosing Linux kernel vulnerabilities

From: Greg KH <greg () kroah com>
Date: Fri, 4 Aug 2017 11:00:37 -0700

On Fri, Aug 04, 2017 at 07:36:58PM +0200, Solar Designer wrote:

I hear that for netdev bugs, security@k.o is likely to ask you to post
such bugs to the public netdev list right away, without any embargo.
You could want to see whether this is in fact the case, and adjust your
instructions if so.


Yes, that is the case, and has happened in the past, but now
security@k.o has a few network developers on it to help out before it
hits the public list, if necessary.

thanks,

greg k-h

Current thread:

Reporting and disclosing Linux kernel vulnerabilities Andrey Konovalov (Aug 04)
- Re: Reporting and disclosing Linux kernel vulnerabilities Kurt Seifried (Aug 04)
- Re: Reporting and disclosing Linux kernel vulnerabilities Solar Designer (Aug 04)
  - Re: Reporting and disclosing Linux kernel vulnerabilities Greg KH (Aug 04)
    - Re: Reporting and disclosing Linux kernel vulnerabilities Andrey Konovalov (Sep 01)
- Re: Reporting and disclosing Linux kernel vulnerabilities Greg KH (Aug 04)