From Fedora Project Wiki

When and Where

On Sat, 1st Nov 2014, 09:30 - 17:00 hrs in room "Sinhagad" on Level 1 at the Red Hat Pune office.

This Fedora Activity Day is aimed at collaborative triage and fixing of Fedora Security tracking bugs. It is meant for Existing Fedora contributors or folks who want to start contributing in a useful way (not just attend a FAD and then disappear). More details below.

Note:- maximum capacity for the day is about 25 participants.


Feel free to add your name here


  • We will start with a basic introduction to Fedora Security by P J P and then go on to the process we follow etc [Approx 30-40 mins]
  • We will then look at the list of flaws which are open and then pick ones we want to pursue. -> open issues
  • Rest of the day goes into actually working on them and figuring out if they can be fixed.
  • The owner of those flaws will continue pursing those flaws after the FAD and ensure they get a proper resolution.
  • Follow progress on etherpad here

Useful links


Proceedings from the Fedora Activity Day on Security:

Triaging bugs at

Bugs without FST owners:

Please ensure you put your FAS name in the whiteboard of the bugs you are modifying / looking at. Format is "fst_owner=<fasname>" in the Whiteboard.


Niranjan [Set NeedInfo Flag] [Set NeedInfo]




Siddharth [ CVE-2013-6800 / Closed fixed in f19 krb5-1.11.3 ] [ CVE-2014-5044 / Needinfo / seems fixed in gcc-4.8.3-7.fc20 ] [ CVE-2014-8355 / Shared Upstream Fix / ? needinfo ] [ CVE-2014-8354 / Shared Upstream Fix / ? needinfo ] [ CVE-2013-6404 / fixed in ] [ CVE-2014-8483 / upstream fix / ? needinfo ]





Blogs and Reports


Hacking away at the bug list