Date: Mon, 22 May 2017 18:51:12 -0600 From: Kurt Seifried <kseifried@...hat.com> To: Martin <martin.gubri@...masoft.org> Cc: oss-security@...ts.openwall.com Subject: Re: How to request a CVE for open source projects On 2017-05-22 2:21 PM, Martin wrote: > On 22/05/2017 at 15:16, Kurt Seifried wrote: > >> Ah, I recently did a large number of CVE assignments, I haven't emailed out >> to the sequesters yet, yours was >> https://github.com/distributedweaknessfiling/DWF-CVE-2017-1000000/blob/f2e15ac3468dd382d9ffa3d5acc032c106f3248c/CVE-2017-1000025.json >> I believe. > I was in the same situation than Michael. I found mine now. > Is it normal that these CVE aren't accessible on MITRE? > https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000025 > We (MITRE, the CVE board and various CNAs) ar working on making that faster (read: automated). So yeah, it's bormal, but hopefully as time goes on it'll get better. -- Kurt Seifried -- Red Hat -- Product Security -- Cloud PGP A90B F995 7350 148F 66BF 7554 160D 4553 5E26 7993 Red Hat Product Security contact: secalert@...hat.com
Powered by blists - more mailing lists
Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.
Powered by Openwall GNU/*/Linux - Powered by OpenVZ