From 6348e7bdf1f11a5e119c794b80ee65fcd0024c2d Mon Sep 17 00:00:00 2001 From: Deirdre Connolly Date: Fri, 22 Jan 2021 16:46:22 -0500 Subject: [PATCH] Remove mention of the CVE as Zfnd was not involved with that. --- responsible_disclosure.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/responsible_disclosure.md b/responsible_disclosure.md index 501e9a318..df24feec5 100644 --- a/responsible_disclosure.md +++ b/responsible_disclosure.md @@ -29,4 +29,4 @@ Zcash is a technology that provides strong privacy. Notes are encrypted to their The standard describes reporters of vulnerabilities including full details of an issue, in order to reproduce it. This is necessary for instance in the case of an external researcher both demonstrating and proving that there really is a security issue, and that security issue really has the impact that they say it has - allowing the development team to accurately prioritize and resolve the issue. -In the case of a counterfeiting bug, however, just like in CVE-2019-7167, we might decide not to include those details with our reports to partners ahead of coordinated release, so long as we are sure that they are vulnerable. +In the case of a counterfeiting bug, we might decide not to include those details with our reports to partners ahead of coordinated release, so long as we are sure that they are vulnerable.