|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
CVE-Announce e-newsletter/May 11, 2005 (opt-in newsletter from the CVE Web site)
cve
mitre.org
Date: Wed May 11 2005 - 17:26:06 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Welcome to the latest edition of the CVE-Announce e-newsletter. This
email newsletter is designed to bring recent news about CVE, such as
new versions, upcoming conferences, new Web site features, etc. right
to your emailbox. Common Vulnerabilities and Exposures (CVE) is a list
or dictionary that provides common names for publicly known
information security vulnerabilities and exposures. CVE content
results from the collaborative efforts of the CVE Editorial Board,
which is comprised of leading representatives from the information
security community. Details on subscribing (and unsubscribing) to the
email newsletter are at the end. Please feel free to pass this
newsletter on to interested colleagues.
Comments: cvemitre.org
-------------------------------------------------------
CVE-Announce e-newsletter/May 11, 2005
-------------------------------------------------------
Contents:
1. Feature Story
2. Hot Topic
3. Also in this Issue
4. Details/Credits + Subscribing and Unsubscribing
FEATURE STORY:
10,000+ CVE Names Now Available on the CVE Web Site!
The CVE Web site now contains 10,168 unique information security
issues with publicly known names. Of these, 3,052 have CVE entry
status and 7,116 have candidate status pending approval by the CVE
Editorial Board. CVE names are used by information security
product/service vendors and researchers as a standard method for
identifying vulnerabilities and for cross-linking with other
repositories that also use CVE names.
CVE names are unique, common identifiers for publicly known
information security vulnerabilities. Each CVE name includes the
following: the CVE identifier number (i.e., "CVE-1999-0067");
indication of "entry" or "candidate" status; brief description of the
security vulnerability or exposure; and any pertinent references
(i.e., vulnerability reports and advisories or OVAL-ID). The CVE List
will be renumbered beginning October 19, 2005. Read the Renumbering
Q&A at http://cve.mitre.org/cve/renumber.html.
Visit the CVE-Compatible Products and Services page to find out about
the 222 products that use CVE names, or see Organizations with CVE
Names in Advisories for a list of the 67 organizations to-date that
are including or have included CVE names in their advisories.
LINKS:
CVE List - http://cve.mitre.org/cve
CVE-Compatible Products and Services page -
http://cve.mitre.org/compatible/
Organizations with CVE Names in Advisories -
http://cve.mitre.org/compatible/alerts_announcements.html
-------------------------------------------------------------
HOT TOPIC:
CVE List to be Renumbered in October
Beginning October 19, 2005, the CVE List numbering scheme will undergo
a one-time-only modification to replace the "CAN" prefix with a "CVE"
prefix in CVE names.
The new numbering scheme will have the CVE prefix from the outset
followed by 8 numerals (e.g., CVE-1999-0067) and a status line
designating whether the name has Entry, Candidate, or Deprecated
status. Each CVE name will continue to include a brief description
and references.
Previously assigned CVE numbers will remain the same except for the
prefix being updated and the addition of the status, e.g.,
CAN-2005-0386 will be changed to CVE-2005-0386 with "Candidate"
status.
Links to CANs in older security advisories will be redirected on the
CVE Web site to pages with the appropriate renumbered names.
LINKS:
Renumbering Q&A - http://cve.mitre.org/cve/renumber.html
CVE List - http://cve.mitre.org/cve
-------------------------------------------------------------
ALSO IN THIS ISSUE:
* MITRE to Host CVE/OVAL Booth at "NetSec 2005" June 13th - 15th
Read these stories and more news at http://cve.mitre.org/news
---------------------------------------------------------------
Details/Credits + Subscribing and Unsubscribing
Managing Editor: Steve Christey, Information Security Technical
Center. Writer: Bob Roberge, Corporate Communications. The MITRE
Corporation (www.mitre.org) maintains CVE and provides impartial
technical guidance to the CVE Editorial Board on all matters related
to ongoing development of CVE.
To unsubscribe from the CVE-Announce e-newsletter, open a new email
message and copy the following text to the BODY of the message
"SIGNOFF CVE-Announce-list", then send the message to:
listservlists.mitre.org. To subscribe, send an email message to
listservlists.mitre.org with the following text in the BODY of the
message: "SUBSCRIBE CVE-Announce-List".
Copyright 2005, The MITRE Corporation. CVE and the CVE logo are
registered trademarks of The MITRE Corporation.
For more information about CVE, visit the CVE Web site at
http://cve.mitre.org or send an email to cvemitre.org.
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]