Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [<thread-prev] [day] [month] [year] [list]
Date: Thu, 1 Feb 2024 11:36:57 +0100
From: Christian Brabandt <>
Subject: Re: Numerous unconfirmed FOSS CVEs disclosed on FD
 mailing list

On Do, 01 Feb 2024, Matthew Fernandez wrote:
> > Please *DO* contest CVE issued for non-security bugs. It helps
> > discourage this kind of bad behaviour if their CVEs get removed. May
> > also help CNA to identify repeat offenders for closer inspection of
> > reports.

I was planning to do this for Vim. However the relevant CVE-2023-45921 
has already been classified as rejected without me doing anything yet.

And interestingly, as soon as the CVE was public, it generated some 
attention and users have directly asked questions when we will fix it.

Was man nicht in den Beinen hat, muß man im Kopf haben.

Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.