Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date: Thu, 14 May 2015 08:01:57 +0000
From: mancha <mancha1@...o.com>
To: oss-security@...ts.openwall.com
Subject: Moving in the wrong direction [was: Re: VENOM - CVE-2015-3456]

On Wed, May 13, 2015 at 10:05:00PM +0000, Jason Geffner wrote:
> We considered different ways of publicly sharing that technical
> information post-embargo and ultimately decided that providing greater
> details about the vulnerability and attack vectors would be better
> published by members of the community external to CrowdStrike.

"Post-embargo" takes on a new meaning when there's not full disclosure
once the embargo ends.

--mancha

Content of type "application/pgp-signature" skipped

Powered by blists - more mailing lists

Your e-mail address:

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Powered by Openwall GNU/*/Linux - Powered by OpenVZ