Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date: Mon, 22 May 2017 18:51:12 -0600
From: Kurt Seifried <kseifried@...hat.com>
To: Martin <martin.gubri@...masoft.org>
Cc: oss-security@...ts.openwall.com
Subject: Re: How to request a CVE for open source projects



On 2017-05-22 2:21 PM, Martin wrote:
> On 22/05/2017 at 15:16, Kurt Seifried wrote:
>
>> Ah, I recently did a large number of CVE assignments, I haven't emailed out
>> to the sequesters yet, yours was
>> https://github.com/distributedweaknessfiling/DWF-CVE-2017-1000000/blob/f2e15ac3468dd382d9ffa3d5acc032c106f3248c/CVE-2017-1000025.json
>> I believe.
> I was in the same situation than Michael. I found mine now.
> Is it normal that these CVE aren't accessible on MITRE?
> https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000025
>
We (MITRE, the CVE board and various CNAs) ar working on making that
faster (read: automated). So yeah, it's bormal, but hopefully as time
goes on it'll get better.

-- 
Kurt Seifried -- Red Hat -- Product Security -- Cloud
PGP A90B F995 7350 148F 66BF 7554 160D 4553 5E26 7993
Red Hat Product Security contact: secalert@...hat.com

Powered by blists - more mailing lists

Your e-mail address:

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Powered by Openwall GNU/*/Linux - Powered by OpenVZ