[fprint] I wonder whether disclosure of a fingerprint is a vulnerability or not.
Bastien Nocera
hadess at hadess.net
Thu May 9 09:22:40 UTC 2019
On Thu, 2019-05-09 at 18:09 +0900, Seong-Joong Kim wrote:
> I am really sorry to bother you.
> I didn't mean it.
>
> As you know, I've reported this issue to upstream on Mar 6, but you
> did not reply to my report about a month.
That's because you were already spamming me, privately, about a number
of issues. I answered you privately before then.
> So I just want to know about freedesktop's official? stance.
There's no "freedesktop official stance" anymore than github would have
an official stance on potential security problems with software it
hosts.
> If it is vulnerability, I would like to request a CVE ID about
> information leakage after your confirmation.
I don't think it is, as I've already said many times. I don't know how
I can phrase it any better.
More information about the fprint
mailing list