Y
Hacker News
new
|
ask
|
show
|
jobs
by
marshray
49 days ago
If you discover a vulnerability in OpenSSL, are you required to track down and separately notify every downstream packager of OpenSSL?
Or do you rely on the OpenSSL project to work their established process?