oss-sec mailing list archives

Re: MySQL 0-day - does it need a CVE?

From: Yves-Alexis Perez <corsac () debian org>
Date: Thu, 09 Feb 2012 22:36:32 +0100

On jeu., 2012-02-09 at 14:23 -0700, Kurt Seifried wrote:

I'm not trying to pick on Oracle but this is topical and a perfect
example of the problem(s) CVE was meant to address but can't if vendors
don't participate in the process appropriately.

Can't MITRE request a little more information from vendors?

Regards,
-- 
Yves-Alexis

Attachment: signature.asc
Description: This is a digitally signed message part

Current thread:

MySQL 0-day - does it need a CVE? Kurt Seifried (Feb 09)
- Re: MySQL 0-day - does it need a CVE? Henri Salo (Feb 09)
- Re: MySQL 0-day - does it need a CVE? Henri Salo (Feb 09)
  - Re: MySQL 0-day - does it need a CVE? Solar Designer (Feb 09)
    - Re: MySQL 0-day - does it need a CVE? Yves-Alexis Perez (Feb 09)
    - Re: MySQL 0-day - does it need a CVE? Kurt Seifried (Feb 09)
    - Re: MySQL 0-day - does it need a CVE? Yves-Alexis Perez (Feb 09)
    - Re: MySQL 0-day - does it need a CVE? Henri Salo (Feb 10)
    - Re: MySQL 0-day - does it need a CVE? Solar Designer (Feb 11)
- Re: MySQL 0-day - does it need a CVE? Tomas Hoger (Feb 24)
  - Re: MySQL 0-day - does it need a CVE? Kurt Seifried (Feb 24)
    - Re: MySQL 0-day - does it need a CVE? Larry Stefonic (Feb 24)