Hi Lukas, On Tue, Jul 20, 2021 at 08:48:28AM +0200, Lukas Tribus wrote: > Hello, > > > On Tue, 20 Jul 2021 at 08:13, Peter Jin <[email protected]> wrote: > > 2. There is a stack buffer overflow found in one of the files. Not > > disclosing it here because this email will end up on the public mailing > > list. If there is a "security" email address I could disclose it to, > > what is it? > > It's [email protected], it's somehow well hidden in doc/intro.txt > (that is the *starter* guide).
I agree it's too much hidden. > I would definitely suggest putting it on the website haproxy.org, and I'd rather not put it as-is on the site, or at least cut into small pieces so that it's not too much spammed. > in the repository move it to a different file, like MAINTAINERS. Yes I agree that being placed into this file would definitely make a lot of sense. Willy
