From: Michał Kępień <michal@isc.org>
Date: Tue, 7 Sep 2021 07:28:48 +0000 (+0200)
Subject: Update release checklist
X-Git-Tag: v9.17.18~2^2~7
X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=2eae9c7e49ec0f304dfe14209473c4dd062470b1;p=thirdparty%2Fbind9.git

Update release checklist

Add an item to the release checklist to make sure regression tests
reproducing publicly disclosed security issues are eventually merged
into each maintained branch.
---

diff --git a/.gitlab/issue_templates/CVE.md b/.gitlab/issue_templates/CVE.md
index bff1818526c..fc95d55ca00 100644
--- a/.gitlab/issue_templates/CVE.md
+++ b/.gitlab/issue_templates/CVE.md
@@ -31,3 +31,7 @@ email to [security-officer@isc.org](security-officer@isc.org).
   - [ ] Create/update the private issue containing links to fixes & reproducers for all CVEs fixed in a given release cycle
   - [ ] Reserve a block of `CHANGES` placeholders once the complete set of vulnerabilities fixed in a given release cycle is determined
   - [ ] Ensure the merge requests containing CVE fixes are merged into `security-*` branches in CVE identifier order
+
+### Post-disclosure actions
+
+  - [ ] Merge a regression test reproducing the bug into all affected (and still maintained) BIND branches