Hi Yakup,
On 3/11/26 9:56 AM, Yakup Ateş wrote:
Dear ladies and gentleman,
I found an OS command injection vulnerability in QEMU.
I want to file a CVE ID and explain the vulnerability to you and get
you to confirm the vulnerability for the CVE ID.
How does the process work exactly with you guys? How can I transmit this
to you on an encrypted channel?
Thank you in advance!
--
Best Regards
*Yakup Ateş*
Chief Executive Officer
yatesh
yatesh Logo
Phone Icon +49 1523 8023340
Email Icon [email protected]
Website Icon yatesh.de <https://yatesh.de>
Address Icon Kostheimer Straße 12, 60326 Frankfurt am Main
*yatesh thinks green.* Please consider the environment before printing
this email.
This email message and any attachments are sent by yatesh, are
confidential, and may be proprietary or privileged. If you are not the
named or intended recipient, please notify us immediately by replying to
this message or sending an email to [email protected] and delete all copies
of this message and attachments. Do not disseminate, distribute, or copy
this email.
you can report it using this process:
https://www.qemu.org/contribute/security-process/
Thanks,
Pierrick
