Von:* Jody Garnett
> *Gesendet:* Samstag, 21. Oktober 2023 08:48
> *An:* Watermeyer, Andreas
> *Cc:* geoserver-devel@lists.sourceforge.net
> *Betreff:* Re: [Geoserver-devel] Security considerations for 2.24.0 and
> 2.23.2
>
>
>
> [Externe E-Mail] Vorsicht beim Öffnen von Links und A
care!
Best regards,
Andreas Watermeyer
Von: Jody Garnett
Gesendet: Samstag, 21. Oktober 2023 08:48
An: Watermeyer, Andreas
Cc: geoserver-devel@lists.sourceforge.net
Betreff: Re: [Geoserver-devel] Security considerations for 2.24.0 and 2.23.2
[Externe E-Mail] Vorsicht beim Öffnen von Links und
Hello,
We have been updating our security policy, as we figure out how to inform
folks of security vulnerabilities.
It is hard to encourage people to update, without being in a position to
tell why (yet).
Please see GSIP-220 for the proposal:
https://github.com/geoserver/geoserver/wiki/GSIP-220
Hello community,
1)
reviewing the GeoServer security policy I found the approach of a "Coordinated
vulnerability disclosure" very reasonable. Thanks for taking security
seriously. Regarding:
4. A fix is included for the "stable" and "maintenance" downloads [...]
Does that mean, that Ge
