net/iavf: support RSS for GRE tunnel packet

[dpdk.git] / doc / guides / contributing / vulnerability.rst

diff --git a/doc/guides/contributing/vulnerability.rst b/doc/guides/contributing/vulnerability.rst
index da00acd..b630025 100644 (file)
--- a/doc/guides/contributing/vulnerability.rst
+++ b/doc/guides/contributing/vulnerability.rst
@@ -8,7 +8,7 @@ Scope
 -----
 
 Only the main repositories (dpdk and dpdk-stable) of the core project
 -----
 
 Only the main repositories (dpdk and dpdk-stable) of the core project

-are in the scope of this security process.
+are in the scope of this security process (including experimental APIs).

 If a stable branch is declared unmaintained (end of life),
 no fix will be applied.
 
 If a stable branch is declared unmaintained (end of life),
 no fix will be applied.
 


@@ -182,7 +182,7 @@ When the fix is ready, the security advisory and patches are sent
 to downstream stakeholders
 (`security-prerelease@dpdk.org <mailto:security-prerelease@dpdk.org>`_),
 specifying the date and time of the end of the embargo.
 to downstream stakeholders
 (`security-prerelease@dpdk.org <mailto:security-prerelease@dpdk.org>`_),
 specifying the date and time of the end of the embargo.

-The public disclosure should happen in **less than one week**.
+The communicated public disclosure date should be **less than one week**

 
 Downstream stakeholders are expected not to deploy or disclose patches
 until the embargo is passed, otherwise they will be removed from the list.
 
 Downstream stakeholders are expected not to deploy or disclose patches
 until the embargo is passed, otherwise they will be removed from the list.