Date: Mon, 23 Jan 2012 20:05:09 -0500 From: Michael Gilbert <michael.s.gilbert@...il.com> To: oss-security@...ts.openwall.com Subject: Re: CVE id assignment dates On Mon, Jan 23, 2012 at 3:04 PM, Steven M. Christey wrote: > We do not publish any dates related to disclosure, patch, or vendor > notification; interested parties can consult other databases that explicitly > track this information, such as OSVDB. Just curious, why not? It seems like this kind of information would be invaluable for researchers interested anthropological/statistical studies of security vulnerabilities. Best wishes, Mike
Powered by blists - more mailing lists
Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.
Powered by Openwall GNU/*/Linux - Powered by OpenVZ