Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date: Mon, 23 Jan 2012 20:05:09 -0500
From: Michael Gilbert <michael.s.gilbert@...il.com>
To: oss-security@...ts.openwall.com
Subject: Re: CVE id assignment dates

On Mon, Jan 23, 2012 at 3:04 PM, Steven M. Christey wrote:
> We do not publish any dates related to disclosure, patch, or vendor
> notification; interested parties can consult other databases that explicitly
> track this information, such as OSVDB.

Just curious, why not?  It seems like this kind of information would
be invaluable for researchers interested anthropological/statistical
studies of security vulnerabilities.

Best wishes,
Mike

Powered by blists - more mailing lists

Your e-mail address:

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Powered by Openwall GNU/*/Linux - Powered by OpenVZ