Date: Thu, 14 May 2015 08:01:57 +0000 From: mancha <mancha1@...o.com> To: oss-security@...ts.openwall.com Subject: Moving in the wrong direction [was: Re: VENOM - CVE-2015-3456] On Wed, May 13, 2015 at 10:05:00PM +0000, Jason Geffner wrote: > We considered different ways of publicly sharing that technical > information post-embargo and ultimately decided that providing greater > details about the vulnerability and attack vectors would be better > published by members of the community external to CrowdStrike. "Post-embargo" takes on a new meaning when there's not full disclosure once the embargo ends. --mancha [ CONTENT OF TYPE application/pgp-signature SKIPPED ]
Powered by blists - more mailing lists
Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.
Powered by Openwall GNU/*/Linux - Powered by OpenVZ