Date: Fri, 15 Sep 2017 14:31:25 +0200 From: Solar Designer <solar@...nwall.com> To: Ben Seri <ben@...is.com> Cc: oss-security@...ts.openwall.com Subject: Re: Linux BlueBorne vulnerabilities On Fri, Sep 15, 2017 at 12:28:11PM +0000, Ben Seri wrote: > Our thought is that since these issues affect multi vendors that are using > Linux, the longer the embargo period, the better chance there is a > coordinated patch goes out to as many users as possible once the embargo is > lifted. Indeed, but it's 2017, not 1997. 14 days is considered a long embargo period now. Unnecessarily long embargoes hurt more than they help. Alexander
Powered by blists - more mailing lists
Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.
Powered by Openwall GNU/*/Linux - Powered by OpenVZ