Re: [Fed-Talk] bug in SmartCard implementation
Re: [Fed-Talk] bug in SmartCard implementation
- Subject: Re: [Fed-Talk] bug in SmartCard implementation
- From: Richard Murphy <email@hidden>
- Date: Fri, 26 Sep 2008 10:51:43 -0700
On Sep 26, 2008, at 10:42 AM, Todd Heberlein wrote:
The statement you received about "After examining your report we do
not believe that the issue is security related" only meant that the
classification bug went from "Security" to "Serious Bug".
"Security" bugs are those which are being considered for Security
Updates to fix security exposures. This is a functionality bug.
I've had similar experiences with respect to BSM auditing (which is
broken). When filing the bug report, I needed to select a category,
and "security" seemed like an obvious category to me. But I guess
Apple's "Security" refers to an immediately exploitable
vulnerability (which I agree that it should get priority).
That's correct
PS. Any news on when BSM auditing is going to be fixed?
I can't comment on that in particular, but I know it's being looked at.
- murf
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Fed-talk mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden