Difference between revisions of "Security Advisory"
| Line 33: | Line 33: | ||
|Review of CVE-2022-21449: Psychic Signatures in Java | |Review of CVE-2022-21449: Psychic Signatures in Java | ||
|} | |} | ||
| + | |||
| + | == Reports == | ||
| + | |||
| + | If you know or suspect any security issues, please report them via: | ||
| + | |||
| + | * Email: security@snowblossom.org | ||
| + | * Discord: fireduck#6402 | ||
| + | * Slack: Fireduck | ||
Revision as of 16:16, 29 June 2022
Advisories
| ID | Date | Versions | Severity | Description |
|---|---|---|---|---|
| SA-1 | 2020.10.30 | All | none | ECDSA signing uses SHA1 hash for signatures |
Reviews
Security Reviews are for when the development team analysis a potential issue and reports on it. If some action needed to be taken, it would be an advisory instead. So reviews show that something was considered and then determined to be a non-issue for Snowblossom.
| ID | Date | Versions | Severity | Description |
|---|---|---|---|---|
| SR-1 | 2022.04.20 | All | none | Review of CVE-2022-21449: Psychic Signatures in Java |
Reports
If you know or suspect any security issues, please report them via:
- Email: security@snowblossom.org
- Discord: fireduck#6402
- Slack: Fireduck
