<html>
<head>
<meta content="text/html; charset=windows-1252"
http-equiv="Content-Type">
</head>
<body text="#000000" bgcolor="#FFFFFF">
Hello<br>
<br>
No there is no procedures other than that we would like you to keep
it private.<br>
If it is ssh/ssl related send a email to <a class="moz-txt-link-abbreviated" href="mailto:ingela@erlang.org">ingela@erlang.org</a>. <br>
If it is something else or if you are having any other thoughts you
can always send a email to <a class="moz-txt-link-abbreviated" href="mailto:kenneth@erlang.org">kenneth@erlang.org</a> or
<a class="moz-txt-link-abbreviated" href="mailto:kenneth.lundin@ericsson.com">kenneth.lundin@ericsson.com</a> and he will make sure that it is handled
by the correct person.<br>
<br>
<br>
hope this helps.<br>
/Henrik<br>
<br>
<div class="moz-cite-prefix">On 2015-05-07 12:32, otpcoder wrote:<br>
</div>
<blockquote
cite="mid:CADsVVi-bSDPAbP9_0+E71Qh9XHw=cYmQ8U4=xFaJkzpKKp7jrg@mail.gmail.com"
type="cite">
<meta http-equiv="Content-Type" content="text/html;
charset=windows-1252">
<div dir="ltr">
<div>Are there particular procedures in place for reporting
vulnerabilities in Erlang/OTP both with and without patches? I
don't see anything specifically related to security
disclosures in the wiki [1].<br>
<br>
</div>
Thanks<br>
<br>
[1] <a moz-do-not-send="true"
href="https://github.com/erlang/otp/wiki">https://github.com/erlang/otp/wiki</a><br>
</div>
<br>
<fieldset class="mimeAttachmentHeader"></fieldset>
<br>
<pre wrap="">_______________________________________________
erlang-questions mailing list
<a class="moz-txt-link-abbreviated" href="mailto:erlang-questions@erlang.org">erlang-questions@erlang.org</a>
<a class="moz-txt-link-freetext" href="http://erlang.org/mailman/listinfo/erlang-questions">http://erlang.org/mailman/listinfo/erlang-questions</a>
</pre>
</blockquote>
<br>
<pre class="moz-signature" cols="72">--
/Henrik Nord Erlang/OTP</pre>
</body>
</html>