Re: gnu-paxutils: multiple crashes

[Assaf Gordon <assafgordon () gmail com>]

Hello,

> On Feb 25, 2017, at 06:36, Agostino Sarubbo <ago () gentoo org> wrote:
>
> Description:
> GNU paxutils is a suite of archive utilities [...]
> A fuzzing on tar and pax shows multiple crashes.
[...]
> Note:
> The email to upstream was rejected.

Not sure what "rejected" means (did the email delivery failed or the maintainer rejected your input, etc).

But generally for GNU Software,
If you don't get timely response from the maintainer,
you can send an email to "security () gnu org" ,
and if that doesn't help, escalate to "maintainers () gnu org".
see https://www.gnu.org/software/security/ 

regards,
 - assaf