oss-security - Re: Re: Re: Linux kernel: HFS+ filesystem implementation, issues, exposure in distros

Follow @Openwall on Twitter for new release announcements and other news

[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]

Message-ID: <20250607145307.owt2hpb3xkqsdxjt@shell.thinkmo.de>
Date: Sat, 7 Jun 2025 16:53:07 +0200
From: Bastian Blank <bblank@...nkmo.de>
To: oss-security@...ts.openwall.com
Subject: Re: Re: Re: Linux kernel: HFS+ filesystem
 implementation, issues, exposure in distros

On Sat, Jun 07, 2025 at 10:37:12AM -0400, Sasha Levin wrote:
> The scope, which I assume was quoted from
> https://www.cve.org/PartnerInformation/ListofPartners/partner/Linux also
> lists cve@...nel.org as the right email to contact.

This page also links as step one to
https://www.kernel.org/doc/html/latest/process/security-bugs.html, which
does _not_ list cve@...nel.org anywhere.

> Note that this isn't just a technicality: for example, I'm a member of
> cve@k.o, but *NOT* of security@....

But it already reached the right organisation.  Did security@k.o respond
with a referal?

Bastian

-- 
There are some things worth dying for.
		-- Kirk, "Errand of Mercy", stardate 3201.7

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.