Re: CVE Information Sources & Scope

To: "Mann, Dave" <damann@mitre.org>
Subject: Re: CVE Information Sources & Scope
From: Mark J Cox <mjc@redhat.com>
Date: Wed, 5 Oct 2011 11:06:59 +0100
CC: cve-editorial-board-list <cve-editorial-board-list@LISTS.MITRE.ORG>
Delivery-Date: Wed Oct 5 06:07:19 2011
In-Reply-To: <3FF9F74E63A7484EB3B88F04329CBEDC04448126E0@IMCMBX1.MITRE.ORG>
List-Help: <mailto:LISTSERV@LISTS.MITRE.ORG?body=INFO%20CVE-EDITORIAL-BOARD-LIST>
List-Owner: <mailto:CVE-EDITORIAL-BOARD-LIST-request@LISTS.MITRE.ORG>
List-Subscribe: <mailto:CVE-EDITORIAL-BOARD-LIST-subscribe-request@LISTS.MITRE.ORG>
List-Unsubscribe: <mailto:CVE-EDITORIAL-BOARD-LIST-unsubscribe-request@LISTS.MITRE.ORG>
References: <3FF9F74E63A7484EB3B88F04329CBEDC04448126E0@IMCMBX1.MITRE.ORG>
Sender: <owner-cve-editorial-board-list@LISTS.MITRE.ORG>
User-Agent: Unknown

> Government Information Sources
+ all 'must have'

> CNA Published Information
+ all 'must have' (otherwise shouldn't be a CNA)

> Non-CNA Vendor Advisories
+ all 'must have'

> Mailing Lists & VDBs
+ must >  Bugtraq
+ ignored >  Vuln-Watch
+ ignored >  VulnDev
+ should >  Full Disclosure
+ ignored >  Security Focus
+ ignored >  Security Tracker
+ ignored >  OSVDB
+ ignored >  ISS X-Force
+ ignored >  FRSIRT
+ ignored >  Secunia
+ ignored >  Packet Storm
+ ignored >  SecuriTeam
+ nice >  SANS Mailing List (Qualys)
+ ignored  Neohapsis (Security Threat Watch)

Additional
+ must "Oss-security" (although also covered by my "CNA" vote)

References:
- CVE Information Sources & Scope
  - From: "Mann, Dave" <damann@mitre.org>

Prev by Date: CVE's Charter, Scope and the Role of CNAs
Next by Date: Re: CVE's Charter, Scope and the Role of CNAs
Prev by thread: Re: CVE Information Sources & Scope
Next by thread: Re: CVE Information Sources & Scope
Index(es):
- Date
- Thread

Page Last Updated: November 06, 2012

Common Vulnerabilities and Exposures

Re: CVE Information Sources & Scope