[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Xen-devel] Security vulnerability process, and CVE-2012-0217

To: Ian Jackson <Ian.Jackson@xxxxxxxxxxxxx>
From: Ian Campbell <Ian.Campbell@xxxxxxxxxx>
Date: Thu, 23 Aug 2012 11:37:10 +0100
Cc: "xen-devel@xxxxxxxxxxxxx" <xen-devel@xxxxxxxxxxxxx>
Delivery-date: Thu, 23 Aug 2012 10:37:50 +0000
List-id: Xen developer discussion <xen-devel.lists.xen.org>

On Tue, 2012-06-19 at 19:16 +0100, Ian Jackson wrote:
[...]
> More minor policy questions
> ---------------------------
[...]
> Lacunae in the process
> ----------------------

I've prepared a series of patches to the policy[0] which implement most
(but not all) of what was suggested in these two sections. I think they
are largely uncontroversial, but please do holler if you disagree or
want to suggest further improvements..

I'm not at all sure that patches are the best way to present this but there
we are.

Ian.

[0] http://www.xen.org/projects/security_vulnerability_process.html

_______________________________________________
Xen-devel mailing list
Xen-devel@xxxxxxxxxxxxx
http://lists.xen.org/xen-devel

Follow-Ups:
- [Xen-devel] [PATCH 2/6] Clarifications to predisclosure list subscription instructions
  - From: Ian Campbell
- [Xen-devel] [PATCH 4/6] Discuss post-embargo disclosure of potentially controversial private decisions
  - From: Ian Campbell
- [Xen-devel] [PATCH 3/6] Clarify the scope of the process to just the hypervisor project
  - From: Ian Campbell
- [Xen-devel] [PATCH 5/6] Patch review, expert advice and targetted fixes
  - From: Ian Campbell
- [Xen-devel] [PATCH 1/6] Clarify what info predisclosure list members may share during an embargo
  - From: Ian Campbell
- [Xen-devel] [PATCH 6/6] Declare version 1.3
  - From: Ian Campbell

Prev by Date: Re: [Xen-devel] acpidump crashes on some machines
Next by Date: [Xen-devel] [PATCH 6/6] Declare version 1.3
Previous by thread: Re: [Xen-devel] Can't see more than 3.5GB of RAM / UEFI / no e820 memory map detected
Next by thread: [Xen-devel] [PATCH 6/6] Declare version 1.3
Index(es):
- Date
- Thread

Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.