>>> On 22.05.15 at 15:14, <major.hay...@rackspace.com> wrote: > My request is that the Xen security team would send a pre-disclosure notice > of the vulnerability as soon as permission from the discoverer is granted > *even if* patches aren't available. For example, I'd like to receive a > notice saying "there's a vulnerability, here's what we know about it, patches > are forthcoming with additional information".
If you were to ask for this only if the time gap until embargo expiry was less than the default of two weeks, maybe I would buy this. Jan _______________________________________________ Xen-devel mailing list Xen-devel@lists.xen.org http://lists.xen.org/xen-devel
