[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Predisclosure-applications] Gentoo pre-disclosure application


I'd like to request the inclusion of Gentoo Linux on the pre-disclosure

Gentoo Linux (gentoo.org) is a source-based Linux distribution. We
distribute Xen in our main package repository.

Evidence of active development can be seen on our mailing lists at
as well as our repositories at

Our Xen packages can be found under

This should also serve as evidence that we do distribute Xen.

Security issues are handled by the Gentoo Security Project:
Handling of confidential issues is described under "3. Security Team
contact information". For details regarding our internal handling of
confidential issues also see [1] and [2].

We have read and agree with the terms of the Xen Security Problem
Response Process and will not disclose any information or updated
packages during an embargo period.

Please use package-security-xen@xxxxxxxxxx for the pre-disclosure list.
This is an alias available only to members of the Gentoo Security
Project and the Xen package maintainers. The security team will make
sure that new Xen maintainers understand the policy before they are
added to the alias.

Thank you for your consideration,

Tobias Heinlein
Gentoo Security

[2] http://www.gentoo.org/security/en/vulnerability-policy.xml

Predisclosure-applications mailing list



Lists.xenproject.org is hosted with RackSpace, monitoring our
servers 24x7x365 and backed by RackSpace's Fanatical Support®.