Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date: Thu, 16 Feb 2017 15:16:45 -0200
From: Fabio Olive Leite <fleite@...hat.com>
To: oss-security@...ts.openwall.com
Subject: Re: MITRE is adding data intake to its CVE ID process

On 02/11/2017 09:35 PM, Solar Designer wrote:
>> C5. I want MITRE to send the https://cveform.mitre.org form data, and
>> the CVE ID, to the oss-security list at the same time that these are
>> sent to the requester.
>>
>> R5. We have had internal discussions within MITRE about this. We are
>> able to implement this easily if the community requires this approach.
>> At the moment, we are expecting the requester to resend this
>> information to oss-security once they accept their CVE ID assignment.
> 
> MITRE - can you please implement that, and we'll see how it goes and
> whether we need it adjusted or possibly discontinued if things go wrong
> or if there's opposition (so far, there's almost none)?

Was there any response from Mitre to this request?  I believe a lot of
people would feel better if they confirmed they will do it.

-- 
Fábio Olivé Leite, Red Hat Product Security
F1C1 1876 3922 1906 6631  0C31 92A5 9276 250D 8380

Powered by blists - more mailing lists

Your e-mail address:

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Powered by Openwall GNU/*/Linux - Powered by OpenVZ