Hackers have compromised a private e-mail list used by Linux and BSD distributors to share information on embargoed security vulnerabilities. The “Vendor-Sec” list is used by distributors of free/open-source OS and software to discuss potential distribution element (kernel, libraries, applications) security vulnerabilities, as well as to co-ordinate the release of security updates by members. The H Security notes that this isn’t the first compromise of the “” list. In 2005, black hat hackers reportedly hijacked a kernel exploit for root access from the list.
Source: https://thehackernews.com/2011/03/linux-distributor-security-list.html