Comment 1 for bug 1465922

Jeremy Stanley (fungi) wrote :

The OpenStack VMT currently considers (based on existing precedent) disclosure of sensitive information in debug-level logging a security hardening opportunity, and does not issue security advisories for it. This is class D in our report taxonomy: https://security.openstack.org/vmt-process.html#incident-report-taxonomy