Subj : [$] A turning point for CVE numbers
To   : All
From : LWN.net
Date : Mon Feb 19 2024 15:50:24

[$] A turning point for CVE numbers

Date:
Wed, 14 Feb 2024 17:05:48 +0000

Description:
The Common Vulnerabilities and
Exposures (CVE) system was set up in 1999 as a way to refer
unambiguously to known vulnerabilities in software.  That system has found
itself under increasing strain over the years, and numerous projects have
responded by trying to assert greater control over how CVE numbers are
assigned for their code.  On February 13, though, a big shoe dropped when
the Linux kernel project announced that it, too, was taking control of 
CVE-number assignments.  As is often
the case, though, the kernel developers are taking a different approach to
vulnerabilities, with possible implications for the CVE system as a whole.

======================================================================
Link to news story:
https://lwn.net/Articles/961978/


--- Mystic BBS v1.12 A47 (Linux/64)
 * Origin: tqwNet UK HUB @ hub.uk.erb.pw (1337:1/100)

.