I am not prepared to vote on this.
First of all, I would need, on a private list where we can go into
details of security issues, to get a feeling for the seriousness of the
flaws in question. A denial of service is, in many contexts, less
serious than file corruption.
We may want to
How do people on this project feel about security flaws?
Should we be fixing them?
I can provide evidence of vulnerabilities, I'm not proposing my fixes be
adopted.
Vote:
+1 Yes we should aim to fix security flaws.
0 don't care.
-1 No.
Regards,
Peter.
Sent from my Samsung device.
I don't think we should delay the release to fix security.
You have your reasons for not voting and I respect that.
Fixing security isn't technically difficult and I have fixes available, I'm
hoping for collaborative development, so they receive peer review /
modification / alternate
