Security and software vulnerabilities

From semantic-mediawiki.org

The Semantic MediaWiki project is cautious about security aspects and strives to eliminate any possible vulnerabilities in its maintained software.

Noticing a vulnerability[edit]

Special care is needed to minimize their exploitation risk if vulnerabilities are discovered. In particular, it is wise to contact the core developers directly to ensure an updated version is released before the bug is public. Also, note that the project is public and can be monitored by potential attackers, so commit messages like "Fixed critical security vulnerability" can also be problematic. For more information on handling security problems in open-source software, see Producing Open Source Software, Chapter 6. Communications: Announcing Security Vulnerabilities.

See also[edit]

Detailed information on how to report bugs.

Retrieved from "https://www.semantic-mediawiki.org/w/index.php?title=Security_and_software_vulnerabilities&oldid=90034"
  • "Attribution 3.0 Germany" (CC BY 3.0 DE)
  • Powered by MediaWiki
  • Powered by Semantic MediaWiki