tjh.dev / kernel
Linux kernel mirror (for testing) git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git
kernel os linux
1
fork

Configure Feed

Select the types of activity you want to include in your feed.

MAINTAINERS: clarify that only verified bugs should be submitted to security@

We're seeing a raise of automated reports from testing tools and reports
about address leaks that are not really exploitable as-is, many of which
do not represent an immediate risk justifying to work in closed places.

Signed-off-by: Willy Tarreau <w@1wt.eu>
Acked-by: Greg Kroah-Hartman <gregkh@linuxfoundation.org>
Signed-off-by: Linus Torvalds <torvalds@linux-foundation.org>

authored by

Willy Tarreau and committed by
Linus Torvalds ce30f264 5132ede0

+9 -1
+9 -1
MAINTAINERS
··· 62 62 63 63 7. When sending security related changes or reports to a maintainer 64 64 please Cc: security@kernel.org, especially if the maintainer 65 - does not respond. 65 + does not respond. Please keep in mind that the security team is 66 + a small set of people who can be efficient only when working on 67 + verified bugs. Please only Cc: this list when you have identified 68 + that the bug would present a short-term risk to other users if it 69 + were publicly disclosed. For example, reports of address leaks do 70 + not represent an immediate threat and are better handled publicly, 71 + and ideally, should come with a patch proposal. Please do not send 72 + automated reports to this list either. Such bugs will be handled 73 + better and faster in the usual public places. 66 74 67 75 8. Happy hacking. 68 76