[jira] [Commented] (CASSANDRA-6264) Reporting security Issues resulting from static code analysis

Sherif Mansour (JIRA) Tue, 29 Oct 2013 08:38:09 -0700

    [ 
https://issues.apache.org/jira/browse/CASSANDRA-6264?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13808088#comment-13808088
 ]


Sherif Mansour commented on CASSANDRA-6264:
-------------------------------------------

Yes the attack vectors would be limited in scope, but doesn't change the impact 
of the vulnerability :-)

> Reporting security Issues resulting from static code analysis
> -------------------------------------------------------------
>
>                 Key: CASSANDRA-6264
>                 URL: https://issues.apache.org/jira/browse/CASSANDRA-6264
>             Project: Cassandra
>          Issue Type: Task
>          Components: Core
>            Reporter: Sherif Mansour
>
> I am running some code quality and security based static code analysis on 
> Cassandra and would like to know what is the responsible disclosure process 
> for Cassandra Security issues.



--
This message was sent by Atlassian JIRA
(v6.1#6144)

[jira] [Commented] (CASSANDRA-6264) Reporting security Issues resulting from static code analysis

Reply via email to