On Tue, 26 May 2026, "xlabai" <[email protected]> wrote: > We follow the security industry standard disclosure policy -- the 90+30 > policy (reference: > https://googleprojectzero.blogspot.com/p/vulnerability-disclosure-policy.html). > If the aforementioned vulnerabilities cannot be fixed within 90 days of > submission, we reserve the right to publicly disclose all information > about the issues after this timeframe.
You just sent the whole thing to a public mailing list [1]. BR, Jani. [1] https://lore.kernel.org/all/61e60951f9de2d29+59e7e080-b725-486b-83f2-5f3398f8f...@tencent.com -- Jani Nikula, Intel
