13 Aug
2024
13 Aug
'24
9:14 p.m.
On 2024-08-13 14:33:48 +0100 (+0100), smooney@redhat.com wrote: [...]
in its current form i woudl agree this is already a little spam but not teribly so.
it would have been better fi they filed a singel bug and added all affected projec or included the project [nova] header in the subject.
if this was an actual vulnerably then our normal process of reporting security issues should have been followed.
Yes, to be clear, if any of them looked like they contained an exploitable risk I would have rejected that ML post and opened a private security bug for the corresponding project with the relevant information. -- Jeremy Stanley