Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date: Tue, 3 Oct 2017 15:17:58 +0200
From: Moritz Muehlenhoff <jmm@...til.org>
To: oss-security@...ts.openwall.com
Subject: Re: Linux kernel CVEs not mentioned on oss-security

On Tue, Oct 03, 2017 at 01:27:09PM +0200, Greg KH wrote:
> I don't know how you can "reject" a CVE, is there a proceedure
> somewhere?  There's lots of CVEs out there that people create against
> the kernel that just aren't issues at all, but I've been ignoring them
> as it makes people happy to assign and track them for no reason.
> 
> Is there some way a project can get them rejected?

You can suggest rejection via https://cveform.mitre.org/ and selecting
"Request an update to an existing CVE Entry" as the request type.

Cheers,
        Moritz

Powered by blists - more mailing lists

Your e-mail address:

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Powered by Openwall GNU/*/Linux - Powered by OpenVZ