10
I am wondering if someone discovers a bug/exploit in Bitcoin software or protocol, who should it be disclosed to? Who is the authority? What would happen if the bug went public? Has it occurred in the past?
How can vulnerabilites in bitcoin be responsibly reported?
Answers
7
Information on current (ie, not past/public/resolved) security issues should be sent to the private bitcoin-security@lists.sourceforge.net mailing list.
Thank to your address I found the procedure to follow described on http://bitcoin.org/fr/developpement
– darkblue – 2013-11-24T09:41:33.860