Date: Wed, 14 Dec 2016 19:59:54 +0100 From: Sona Sarmadi <sona.sarmadi@...a.com> To: <oss-security@...ts.openwall.com> Subject: Re: why many CVEs are ** RESERVED ** on Mitre On 2016-12-14 18:31, Kurt Seifried wrote: > On Wed, Dec 14, 2016 at 8:17 AM, Sevan Janiyan <venture37@...klan.co.uk> > wrote: > >> >> On 14/12/2016 15:09, Kurt Seifried wrote: >>> I would suggest you consider getting involved in helping create CVEs if >> it >>> is such an important resource, rather then just being a somewhat classic >>> "Free rider" >>> >>> https://en.wikipedia.org/wiki/Free_rider_problem >> Would creating CVEs help with the reservations of already disclosed CVEs? >> >> > What would help is getting involved in CVE, something I'm working on, keep > an eye on #cvementor and https://cvementor.org (just a collection form > currently). Also if you want to create CVEs you need to request them > through a CVE Numbering Authority (CNA), for Open Source you can ask here, > or via https://iwantacve.org/ > Thanks all for your feedback. I would be glad to help. I tried the Mitre's web interface to update Curl CVEs which is listed as Reserved. Regards //Sona >
Powered by blists - more mailing lists
Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.
Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.