Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Bugzilla SSL certificate expired #79

Open
deeglaze opened this issue Jan 11, 2025 · 4 comments
Open

Bugzilla SSL certificate expired #79

deeglaze opened this issue Jan 11, 2025 · 4 comments

Comments

@deeglaze
Copy link

deeglaze commented Jan 11, 2025

Safe browsing prohibits visiting the https://bugzilla.tianocore.org bug tracker due to CERT_DATE_INVALID.

@csosto-pk
Copy link

Since bugzilla is out of commission, should we wait for it come back or ask questions in git issues?

@deeglaze
Copy link
Author

deeglaze commented Feb 1, 2025

It looks like bugzilla issues have been migrated to github issues, but there are out-of-date instructions that still refer to bugzilla. Most importantly is for reporting security bugs

Security issues should be accessible ahead of the disclosure date to any UEFI forum member that has joined the infosec group.

https://uefi.org/security says

If you have information about a security issue or vulnerability with a product that may be due to its UEFI-based firmware, please send an e-mail to [email protected]. Encrypt sensitive information using our PGP public key.

But reporting-security-issues says

NOTE: Never send any details related to a security issue in email.

Probably this should say "unencrypted email" and link the same PGP key as on uefi.org.

@rcran-ampere
Copy link

It looks like the Bugzilla site has been decommissioned: I now get an error saying it can't be reached:

This site can’t be reached
bugzilla.tianocore.org’s server IP address could not be found.

@samerhaj
Copy link

samerhaj commented Mar 3, 2025

UEFI/ACPI spec "code-first" ECRs process is now being switched to using Github. See: #84

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

No branches or pull requests

4 participants