[dpdk-web] [PATCH] clarify security action
Maxime Coquelin
maxime.coquelin at redhat.com
Tue Jun 25 15:36:38 CEST 2019
On 6/17/19 6:04 PM, Ferruh Yigit wrote:
> Add a note to not use Bugzilla but report via email to security at dpdk.org
>
> Signed-off-by: Ferruh Yigit <ferruh.yigit at intel.com>
> ---
> content/security/_index.md | 6 ++++--
> 1 file changed, 4 insertions(+), 2 deletions(-)
>
> diff --git a/content/security/_index.md b/content/security/_index.md
> index a6927fc..3c1ad82 100644
> --- a/content/security/_index.md
> +++ b/content/security/_index.md
> @@ -5,8 +5,10 @@ weight = "9"
>
> ## Vulnerability Management
> ---
> -If a vulnerability is found in DPDK,
> -it must be reported, analyzed, fixed and disclosed according to the
> +If a vulnerability is found in DPDK, please do not use Bugzilla for reporting security issues.
> +Instead, send GPG-encrypted emails to [security at dpdk.org](mailto:security at dpdk.org). We will respond promptly to begin coordinating a fix and disclosure.
> +
> +Security issues must be reported, analyzed, fixed and disclosed according to the
> [vulnerability management process](//doc.dpdk.org/guides/contributing/vulnerability.html).
>
> ## Contact
>
Acked-by: Maxime Coquelin <maxime.coquelin at redhat.com>
More information about the web
mailing list