How to handle reporting of a security bug? [message #652329] |
Thu, 03 February 2011 15:36 |
Jeff Beard-Shouse Messages: 1 Registered: February 2011 |
Junior Member |
|
|
I am a security researcher with Security PS. I have found a vulnerability in this software package and would like to report it. I did find this post detailing the presence of a special security check box on the bug report submission form. I however did not see it when I went to fill in the bug report form. I am wondering if that check box only appears for committers?
My main question is what is the best way to disclose a security vulnerability to this project? As I want to do so in the most responsible way possible.
Thanks,
Jeff Beard-Shouse
Security Consultant, Security PS
jbeardshouse (a) securityps.com
[Updated on: Thu, 03 February 2011 15:38] Report message to a moderator
|
|
|
|
Powered by
FUDForum. Page generated in 0.02851 seconds