On Fri, Aug 21, 2015 at 3:55 PM, Guido Vranken <guidovranken@xxxxxxxxx> wrote: > germane exploitation details. I did find an older thread in the > archive addressing this question ( > http://thread.gmane.org/gmane.comp.version-control.git/260328/ ), but > because I'm unsure if those e-mail addresses are still relevant, I'm > asking again. Indeed that was an old advice. Recent releases of "A note from the maintainer" has this paragraph: If you think you found a security-sensitive issue and want to disclose it to us without announcing it to wider public, please contact us at our security mailing list <git-security@xxxxxxxxxxxxxxxx>. -- To unsubscribe from this list: send the line "unsubscribe git" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html