Comment 6 for bug 1649333

Any progress on the security note? We've released Ocata with the bug since this was last discussed, and we're getting close to releasing Pike. I'd still like to have the OSSN, but at this point I'd rather have the issue fixed.