Xen Project asks to limit security vulnerability advisories


The Xen Project has requested feedback from the community in thrashing out new disclosure guidelines which may only reveal the most serious vulnerabilities affecting the hypervisor.

The Xen Project is a group which brings together developers from the open-source community for the purpose of the Xen Project hypervisor, microkernel-based software which allows users to utilize vitualization technologies.

As with any software, bugs and vulnerabilities will emerge during development.

However, when this occurs, simply fixing the problem is not the end of the issue — advisories need to be issued and users made aware of any potential threats or exploits.

The non-profit, led by the Linux Foundation, requested feedback this week from the community, asking if it was truly necessary to disclose every…


Read the full article from the Source…

Back to Top