Here's the Linux kernel vulnerability disclosure process I described based on the experience of reporting a few bugs, could have been useful here.
github.com/google/syzkall
Quote Tweet
Intel just disclosed a bunch of Linux Bluetooth vulnerabilities (intel.com/content/www/us), but:
1) Despite claiming the fixes are in 5.9, they aren't
2) Distributions weren't notified so didn't have backported patches ready to release
Show this thread