On Wed, 2006-07-05 at 20:44 +0200, Henning Makholm wrote:
> Related to this: While researching the format I discovered a buffer
> overrun somewhere in the XCF parsing code. Is there a recommended way
> to report security bugs confidentially? (I asked on IRC and was
> encouraged to just use the public bugzilla, but I'm uncomfortable by
> following such advice gathered on a lazy IRC channel).
Please use Bugzilla as you have been told on #gimp.
Gimp-developer mailing list