Products Openwall GNU/*/Linux   server OS Linux Kernel Runtime Guard John the Ripper   password cracker Free & Open Source for any platform in the cloud Pro for Linux Pro for macOS Wordlists   for password cracking passwdqc   policy enforcement Free & Open Source for Unix Pro for Windows (Active Directory) yescrypt   KDF & password hashing yespower   Proof-of-Work (PoW) crypt_blowfish   password hashing phpass   ditto in PHP tcb   better password shadowing Pluggable Authentication Modules scanlogd   port scan detector popa3d   tiny POP3 daemon blists   web interface to mailing lists msulogin   single user mode login php_mt_seed   mt_rand() cracker Services Publications Articles Presentations Resources Mailing lists Community wiki Source code repositories (GitHub) Source code repositories (CVSweb) File archive & mirrors How to verify digital signatures OVE IDs What's new

Date: Fri, 29 Oct 2021 17:37:37 -0700
From: Alan Coopersmith <alan.coopersmith@...cle.com>
To: oss-security@...ts.openwall.com
Subject: CVE website transition from cve.mitre.org to cve.org

FYI for those who aren't subscribed to the CVE newsletter or blog and
don't follow https://twitter.com/CVEannounce/ - they've sent out this
announcement in this month's newsletter:

 > Introducing the all-new CVE Program website at its new “CVE.ORG” web address:
 > WWW.CVE.ORG. The new website includes many new features and is optimized for
 > users.
 >
 > This is the first step in transitioning from the old CVE.MITRE.ORG website.
 > The phased quarterly transition process began today and will last for up to
 > one year. During the quarterly transition, new releases of this website will
 > occur every quarter, and the new CVE.ORG website will operate concurrently
 > with the CVE.MITRE.ORG website. Upon completion of the phased transition,
 > the CVE.MITRE.ORG website will be archived and retired.
 >
 > Items moved to this new site will no longer be maintained on the old the
 > website; for example, news, blogs, podcasts, and the list of CVE Numbering
 > Authorities (CNAs). Examples of major items that will temporarily remain on
 > the old CVE.MITRE.ORG site until later in the transition include the CVE List
 > keyword search and the individual CVE List download files. CVE Records will be
 > published on both sites during the transition.

The full article can be read at:
https://www.cve.org/Media/News/item/news/2021/09/29/Welcome-to-the-New-CVE

Most important for members of this mailing list are:

https://www.cve.org/ResourcesSupport/ReportRequest
  - documentation of the process to request assignment or updating of a CVE id

https://www.cve.org/PartnerInformation/ListofPartners
  - list of CNAs to request a CVE assignment or update from.

https://cveform.mitre.org/ appears to still be the form to request those from
Mitre if another CNA is not more appropriate.

-- 
	-Alan Coopersmith-               alan.coopersmith@...cle.com
	 Oracle Solaris Engineering - https://blogs.oracle.com/alanc

Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.