Comment 3 for bug 2016278

Revision history for this message
Jeremy Stanley (fungi) wrote :

If this were to change in Swift, I get the impression it would only change for new releases from the master branch and not get backported to older stable release branches, so it's not something we'd issue a security advisory about. However, since this report discloses a potential vulnerability in Oracle Cloud, I'm hesitant to switch it to public without some confirmation that doing so won't expose them to additional risk.

Was this problem also disclosed to the Oracle Cloud admins? If so, when were they notified and did they express concern or provide a timeline to address it in their deployment?