Vulnerability Guidelines suggestion: Fixed Version must be announced on XF.com

Alpha1

Alpha1

Well-known member
I frequently see various developers release new versions that patch security vulnerabilities, but only release or announce the patches on their site or privately through conversation/email.

Currently the guidelines are written from the perspective or assumption that the fix is released/announced on xenforo.com
I think it would be a good thing to clarify the resource vulnerability guidelines in this regard.
 
Alfa1 said:
I frequently see various developers release new versions that patch security vulnerabilities, but only release or announce the patches on their site or privately through conversation/email.
Click to expand...
Can you please provide details?
 
You must log in or register to reply here.

Similar threads

GameNet
Updating my existing add-on [NICK97] Recently Used Devices - XF2
Replies
0
Views
440
GameNet
GameNet
xml
When should update Linux packages according to semantic versioning?
Replies
0
Views
222
xml
xml
eva2000
PHP Remote Code Execution CVE-2019-11043 security flaw
Replies
0
Views
2K
eva2000
eva2000
Live Free
A few more migration issues: double posting / mods unable to ban
Replies
1
Views
533
thetechguy
T
Andro
Upcoming Google Search Page Experience update (Core Web Vitals are becoming ranking signals); how does it affect sites powered by XenForo
2 3
Replies
57
Views
8K
Andro
Andro
Top Bottom