oss-sec mailing list archives

Re: Re: Re: Linux kernel: HFS+ filesystem implementation, issues, exposure in distros

From: Bastian Blank <bblank () thinkmo de>
Date: Sat, 7 Jun 2025 16:53:07 +0200

On Sat, Jun 07, 2025 at 10:37:12AM -0400, Sasha Levin wrote:

The scope, which I assume was quoted from
https://www.cve.org/PartnerInformation/ListofPartners/partner/Linux also
lists cve () kernel org as the right email to contact.


This page also links as step one to
https://www.kernel.org/doc/html/latest/process/security-bugs.html, which
does _not_ list cve () kernel org anywhere.

Note that this isn't just a technicality: for example, I'm a member of
cve@k.o, but *NOT* of security@k.o.


But it already reached the right organisation.  Did security@k.o respond
with a referal?

Bastian

-- 
There are some things worth dying for.
                -- Kirk, "Errand of Mercy", stardate 3201.7

Current thread:

Re: Re: Linux kernel: HFS+ filesystem implementation, issues, exposure in distros Attila Szasz (Jun 06)
- Re: Re: Re: Linux kernel: HFS+ filesystem implementation, issues, exposure in distros Greg KH (Jun 07)
  - Re: Re: Re: Linux kernel: HFS+ filesystem implementation, issues, exposure in distros Sasha Levin (Jun 07)
    - Re: Re: Re: Linux kernel: HFS+ filesystem implementation, issues, exposure in distros Bastian Blank (Jun 07)
    - Re: Re: Re: Linux kernel: HFS+ filesystem implementation, issues, exposure in distros Sasha Levin (Jun 07)