Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list] 
Message-ID: <CAE-_4r1MsrEuyF9cYcJe4bg4PrpD-YYptCq2ycZKYF9fT__Jpg@mail.gmail.com>
Date: Thu, 23 Feb 2017 10:26:35 +0200
From: Ariel Zelivansky <ariel.zelivans@...il.com>
To: oss-security@...ts.openwall.com
Subject: Re: CVE Request - Multiple vulnerabilities in gdk-pixbuf

Leo, thanks for the reference.

I have requested a CVE via the web form and haven't heard from MITRE so
far. Do they usually take time in responding?
Or am I supposed to contact some other CNA?

On Tue, Feb 21, 2017 at 10:42 PM, Leo Famulari <leo@...ulari.name> wrote:

> On Tue, Feb 21, 2017 at 05:20:11PM +0200, Ariel Zelivanski wrote:
> > Hello,
> >
> > I just reported several vulnerabilities in gdk-pixbuf. I am adding the
> > relevant details but you can also refer to the bug reports in the links.
> If
> > suitable please assign CVEs.
>
> As announced previously [0], MITRE is no longer assigning CVEs based on
> messages to this list. Will you request the CVE IDs via the new web
> form? [1]
>
> [0]
> http://seclists.org/oss-sec/2017/q1/351
>
> [1]
> https://cveform.mitre.org/
>



-- 
*Ariel Zelivansky *— 0503990401

Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.