Add a note to not use Bugzilla but report via email to security@dpdk.org Signed-off-by: Ferruh Yigit <ferruh.yigit@intel.com> --- content/security/_index.md | 6 ++++-- 1 file changed, 4 insertions(+), 2 deletions(-) diff --git a/content/security/_index.md b/content/security/_index.md index a6927fc..3c1ad82 100644 --- a/content/security/_index.md +++ b/content/security/_index.md @@ -5,8 +5,10 @@ weight = "9" ## Vulnerability Management --- -If a vulnerability is found in DPDK, -it must be reported, analyzed, fixed and disclosed according to the +If a vulnerability is found in DPDK, please do not use Bugzilla for reporting security issues. +Instead, send GPG-encrypted emails to [security@dpdk.org](mailto:security@dpdk.org). We will respond promptly to begin coordinating a fix and disclosure. + +Security issues must be reported, analyzed, fixed and disclosed according to the [vulnerability management process](//doc.dpdk.org/guides/contributing/vulnerability.html). ## Contact -- 2.21.0
On 6/17/19 6:04 PM, Ferruh Yigit wrote:
> Add a note to not use Bugzilla but report via email to security@dpdk.org
>
> Signed-off-by: Ferruh Yigit <ferruh.yigit@intel.com>
> ---
> content/security/_index.md | 6 ++++--
> 1 file changed, 4 insertions(+), 2 deletions(-)
>
> diff --git a/content/security/_index.md b/content/security/_index.md
> index a6927fc..3c1ad82 100644
> --- a/content/security/_index.md
> +++ b/content/security/_index.md
> @@ -5,8 +5,10 @@ weight = "9"
>
> ## Vulnerability Management
> ---
> -If a vulnerability is found in DPDK,
> -it must be reported, analyzed, fixed and disclosed according to the
> +If a vulnerability is found in DPDK, please do not use Bugzilla for reporting security issues.
> +Instead, send GPG-encrypted emails to [security@dpdk.org](mailto:security@dpdk.org). We will respond promptly to begin coordinating a fix and disclosure.
> +
> +Security issues must be reported, analyzed, fixed and disclosed according to the
> [vulnerability management process](//doc.dpdk.org/guides/contributing/vulnerability.html).
>
> ## Contact
>
Acked-by: Maxime Coquelin <maxime.coquelin@redhat.com>
25/06/2019 15:36, Maxime Coquelin:
>
> On 6/17/19 6:04 PM, Ferruh Yigit wrote:
> > Add a note to not use Bugzilla but report via email to security@dpdk.org
> >
> > Signed-off-by: Ferruh Yigit <ferruh.yigit@intel.com>
>
> Acked-by: Maxime Coquelin <maxime.coquelin@redhat.com>
Applied, thanks