[$] A turning point for CVE numbers
Date:
Wed, 14 Feb 2024 17:05:48 +0000
Description:
The Common Vulnerabilities and
Exposures (CVE) system was set up in 1999 as a way to refer
unambiguously to known vulnerabilities in software. That system has found itself under increasing strain over the years, and numerous projects have responded by trying to assert greater control over how CVE numbers are
assigned for their code. On February 13, though, a big shoe dropped when
the Linux kernel project announced that it, too, was taking control of CVE-number assignments. As is often
the case, though, the kernel developers are taking a different approach to vulnerabilities, with possible implications for the CVE system as a whole.
======================================================================
Link to news story:
https://lwn.net/Articles/961978/
--- Mystic BBS v1.12 A47 (Linux/64)
* Origin: tqwNet UK HUB @ hub.uk.erb.pw (1337:1/100)