mirror/gcc
2
0
Fork 0
mirror of git://gcc.gnu.org/git/gcc.git synced 2025-02-26 01:55:34 +08:00
Code Issues Packages Projects Releases Wiki Activity
209,838 Commits 73 Branches 201 Tags 2.1 GiB
f3fdcf4a37
Commit Graph

4 Commits

Author SHA1 Message Date
Siddhesh Poyarekar
e9f2c6d260 SECURITY.txt: Drop "exploitable" in reference to hardening issues 
The "exploitable vulnerability" may lead to a misunderstanding that
missed hardening issues are considered vulnerabilities, just that
they're not exploitable.  This is not true, since while hardening bugs
may be security-relevant, the absence of hardening does not make a
program any more vulnerable to exploits than without.

Drop the "exploitable" word to make it clear that missed hardening is
not considered a vulnerability.

Signed-off-by: Siddhesh Poyarekar <siddhesh@gotplt.org>

ChangeLog:

	* SECURITY.txt: Drop "exploitable" in the hardening section.
 2024-01-09 10:49:01 -05:00
Jan Engelhardt
604e76ed86 secpol: consistent indentation 
86% of the document have 4 spaces; adjust the remaining 14%.

Signed-off-by: Jan Engelhardt <jengelh@inai.de>

ChangeLog:

	* SECURITY.txt: Fix up indentation.
 2023-10-05 12:00:39 -04:00
Jan Engelhardt
2e087957d9 secpol: add grammatically missing commas / remove one excess instance 
Signed-off-by: Jan Engelhardt <jengelh@inai.de>

ChangeLog:

	* SECURITY.txt: Fix up commas.
 2023-10-05 11:59:59 -04:00
Siddhesh Poyarekar
4cac1d2eec Add a GCC Security policy 
Define a security process and exclusions to security issues for GCC and
all components it ships.

Signed-off-by: Siddhesh Poyarekar <siddhesh@gotplt.org>

ChangeLog:

	* SECURITY.txt: New file.
 2023-10-04 14:50:35 -04:00