oss-sec mailing list archives
Re: How to request a CVE for open source projects
From: Kurt Seifried <kseifried () redhat com>
Date: Mon, 22 May 2017 18:51:12 -0600
On 2017-05-22 2:21 PM, Martin wrote:
On 22/05/2017 at 15:16, Kurt Seifried wrote:Ah, I recently did a large number of CVE assignments, I haven't emailed out to the sequesters yet, yours was https://github.com/distributedweaknessfiling/DWF-CVE-2017-1000000/blob/f2e15ac3468dd382d9ffa3d5acc032c106f3248c/CVE-2017-1000025.json I believe.I was in the same situation than Michael. I found mine now. Is it normal that these CVE aren't accessible on MITRE? https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000025
We (MITRE, the CVE board and various CNAs) ar working on making that faster (read: automated). So yeah, it's bormal, but hopefully as time goes on it'll get better. -- Kurt Seifried -- Red Hat -- Product Security -- Cloud PGP A90B F995 7350 148F 66BF 7554 160D 4553 5E26 7993 Red Hat Product Security contact: secalert () redhat com
Current thread:
- Re: How to request a CVE for open source projects, (continued)
- Re: How to request a CVE for open source projects Kurt H Maier (May 22)
- Re: How to request a CVE for open source projects Kurt Seifried (May 22)
- Re: How to request a CVE for open source projects Kurt H Maier (May 22)
- Re: How to request a CVE for open source projects Kurt Seifried (May 22)
- Re: How to request a CVE for open source projects Kurt H Maier (May 22)
- Re: How to request a CVE for open source projects Perry E. Metzger (May 22)
- Re: How to request a CVE for open source projects Kurt Seifried (May 23)
- Re: How to request a CVE for open source projects Martin (May 22)
- Re: How to request a CVE for open source projects Kurt Seifried (May 22)