[ft-devel] Procedure for reporting a possible security vulnerability

freetype-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[ft-devel] Procedure for reporting a possible security vulnerability

From:	Reed Loden
Subject:	[ft-devel] Procedure for reporting a possible security vulnerability
Date:	Fri, 19 Mar 2010 16:24:09 -0700

Greetings,

I have received a report of a possible security vulnerability
that I need to pass on to the freetype developers for investigation.
There doesn't seem to be a specific place to report security problems
to, and the tracker on Savannah
(https://savannah.nongnu.org/bugs/?func=additem&group=freetype) doesn't
have a way (that I can see) to make an issue private/confidential.

What's the recommended procedure for reporting possible security
vulnerabilities?

Thanks,
~reed

-- 
Reed Loden - <address@hidden> / <address@hidden>
GNU Project [gnu.org] / Free Software Foundation [fsf.org]

pgpso6Dq1mKYV.pgp
Description: PGP signature

[Prev in Thread]

Current Thread

[Next in Thread]

[ft-devel] Procedure for reporting a possible security vulnerability, Reed Loden <=
- Re: [ft-devel] Procedure for reporting a possible security vulnerability, Werner LEMBERG, 2010/03/20
  - Re: [Savannah-help-public] Re: [ft-devel] Procedure for reporting a possible security vulnerability, Sylvain Beucler, 2010/03/20
    - Re: [Savannah-help-public] Re: [ft-devel] Procedure for reporting a possible security vulnerability, Werner LEMBERG, 2010/03/20

Prev by Date: Re: [ft-devel] inconsistently dropping sub-pixel features
Next by Date: Re: [ft-devel] inconsistently dropping sub-pixel features
Previous by thread: [ft-devel] inconsistently dropping sub-pixel features
Next by thread: Re: [ft-devel] Procedure for reporting a possible security vulnerability
Index(es):
- Date
- Thread