|
|
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: CVE Announce - May 11, 2017 (opt-in newsletter from the CVE website)
- To: CVE Editorial Board <cve-editorial-board-list@lists.mitre.org>
- Subject: Re: CVE Announce - May 11, 2017 (opt-in newsletter from the CVE website)
- From: jericho <jericho@attrition.org>
- Date: Thu, 11 May 2017 23:54:48 -0500
- Authentication-results: spf=none (sender IP is 129.83.29.2) smtp.mailfrom=LISTS.MITRE.ORG; mitre.mail.onmicrosoft.com; dkim=none (message not signed) header.d=none;mitre.mail.onmicrosoft.com; dmarc=none action=none header.from=attrition.org;
- Delivery-date: Fri May 12 07:50:46 2017
- Importance: high
- In-reply-to: <000001d2caa5$3bd6c070$b3844150$@mitre.org>
- List-help: <mailto:LISTSERV@LISTS.MITRE.ORG?body=INFO%20CVE-EDITORIAL-BOARD-LIST>
- List-owner: <mailto:CVE-EDITORIAL-BOARD-LIST-request@LISTS.MITRE.ORG>
- List-subscribe: <mailto:CVE-EDITORIAL-BOARD-LIST-subscribe-request@LISTS.MITRE.ORG>
- List-unsubscribe: <mailto:CVE-EDITORIAL-BOARD-LIST-unsubscribe-request@LISTS.MITRE.ORG>
- References: <000001d2caa5$3bd6c070$b3844150$@mitre.org>
- Sender: <owner-cve-editorial-board-list@lists.mitre.org>
- Spamdiagnosticmetadata: 6cdb8bfc89744bd8bfee511e3e65aa05
- Spamdiagnosticoutput: 1:2
- User-agent: Alpine 2.00 (LNX 1167 2008-08-23)
On Thu, 11 May 2017, CVE wrote: : Welcome to the latest issue of the CVE-Announce e-newsletter. This email newsletter is : designed to bring recent news about CVE, such as new website features, new CNAs, CVE in [..] : ------------------------------------------------------- : CVE-Announce e-newsletter/May 11, 2017 : ------------------------------------------------------- : : Contents: : : 1. IMPORTANT: CVE Will Reject a Group of Unused CVE IDs on May 11 We received warning a day before you planned to do it. It was pushed an additional day due to NIST's concerns. But I don't feel it is appropriate giving the rest of the industry a same-day notification of this. The fact that NIST said "whoa... hang on" along with some common sense says that this kind of huge influx of CVEs could potentially break integrations as much as a change in the ID scheme. In the future, such big events should come with a lot more public warning. Brian
- Follow-Ups:
- RE: CVE Announce - May 11, 2017 (opt-in newsletter from the CVE website)
- From: "Coffin, Chris" <ccoffin@mitre.org>
- RE: CVE Announce - May 11, 2017 (opt-in newsletter from the CVE website)
- Prev by Date: RE: Current standards/criteria for 'Undefined Behavior'
- Next by Date: RE: CVE Announce - May 11, 2017 (opt-in newsletter from the CVE website)
- Previous by thread: Re: Nomination of Beverly Finch to the CVE Board
- Next by thread: RE: CVE Announce - May 11, 2017 (opt-in newsletter from the CVE website)
- Index(es):