PGP key for vulnerability reports

Ethan Blanton elb at
Thu Jan 9 09:50:08 EST 2014

Richard Johnson spake unto us the following wisdom:
> Hello, it has been a month since our last correspondence. We would like to
> move forward with the process of fixing these bugs and making our snort
> signatures public. We also have not had any feedback on the other three
> bugs. Please let us know if we can help and a plan of action.

I asked Tomasz for his hit on these bugs.  Does anyone else have
comments?  Where are we for a 2.x.y, can we just commit to pushing one
out in a week or two?  I know there are several people with pending
fixes in the private repo...


More information about the security mailing list