Security release criterion proposal
Adam Williamson
awilliam at redhat.com
Wed May 18 17:51:14 UTC 2011
On Wed, 2011-05-18 at 13:45 -0400, Adam Jackson wrote:
> On 5/18/11 1:14 PM, J B wrote:
>
> > So, even a local DoS could qualify for a security blocker.
>
> Denial of service is not a security issue. Full stop. Those words mean
> different things. Do not conflate them.
Well, it's considered such by Fedora Security.
http://fedoraproject.org/wiki/Security/Classifications
"A security issue is a class of bugs which can allow an attacker to deny
the user computing resources, or possibly execute arbitrary code on the
user's machine. Security issues pose significant risk to users since
they can be used by viruses and worms to spread between computers.
Security issues can be broken down into two basic types: denial of
service (DoS), and arbitrary code execution." So I thought it
appropriate to list for consideration in this thread.
--
Adam Williamson
Fedora QA Community Monkey
IRC: adamw | Fedora Talk: adamwill AT fedoraproject DOT org
http://www.happyassassin.net
More information about the test
mailing list