[License-discuss] Coordinated release of security vulnerability information.

Bruce Perens bruce at perens.com
Sat Aug 24 01:24:13 UTC 2019


I am most worried that a fix is actually an exploit, and that by limiting
the number of eyes which can look at the fix for a period of time, a wide
time window for exploitation is made available to the perpetrator. No
shortage of such fixes have opened security holes, unintentionally.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.opensource.org/pipermail/license-discuss_lists.opensource.org/attachments/20190823/6a7b155d/attachment.html>


More information about the License-discuss mailing list