On 14.03.2017 09:30, Simon McVittie wrote:
Thanks for reporting, I'll fix this ASAP.
Awesome, thanks for the prompt reaction!
Looks like I need to teach ioquake3 upstream about coordinated disclosure, or remind them that their game is in distributions.
That might be a good idea, I had the impression they didn't really know how to inform package maintainers properly - TBH, neither do I (I'm not involved in ioq3, but in other open source game ports). Is there a mailing list or something similar for security issues that reaches package maintainers of all distros?
Cheers, Daniel
