From: CVE Announce List (cvemitre.org)
Date: Tue Jul 19 2005 - 12:38:32 CDT

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Welcome to the latest edition of the CVE-Announce e-newsletter. This
email newsletter is designed to bring recent news about CVE, such as new
versions, upcoming conferences, new Web site features, etc. right to
your emailbox. Common Vulnerabilities and Exposures (CVE) is a list or
dictionary that provides common names for publicly known information
security vulnerabilities and exposures. CVE content results from the
collaborative efforts of the CVE Editorial Board, which is comprised of
leading representatives from the information security community. Details
on subscribing (and unsubscribing) to the email newsletter are at the
end. Please feel free to pass this newsletter on to interested
colleagues.

Comments: cvemitre.org

-------------------------------------------------------
CVE-Announce e-newsletter/July 19, 2005
-------------------------------------------------------

Contents:

1. Feature Story
2. Hot Topic
3. Also in this Issue
4. Details/Credits + Subscribing and Unsubscribing

FEATURE STORY:

228 Information Security Products and Services Now Listed on the CVE Web
Site

Information about numerous information security products and services
can be found in the CVE-Compatible Products and Services section of the
CVE Web site. 228 are listed to-date, of which 52 network security
products or services from 29 organizations from industry, government,
and academia organizations worldwide have been awarded the
CVE-Compatible logo and are registered as "Officially CVE-Compatible,"
while another 110 organizations have declared that their 176 products
are or will be compatible.

"CVE-compatible" means that a product or service uses CVE names in a way
that allows it to cross-link with other repositories that also use CVE
names, as documented in the CVE compatibility requirements. Each item
listed on the CVE Web site includes a link to the organization's
homepage, the product or service name, type of product, link to the
product homepage, and a notation of the specific point in the CVE
Compatibility Process each product or service has reached. Many
organizations have multiple products and services listed. For additional
usability, they are also listed by product type, product name,
organization, and country. Product types include vulnerability
databases; security archives and advisories; vulnerability assessment
and remediation; intrusion detection, management, monitoring, and
response; incident management; data and event correlation; educational
materials; and firewalls.

Visit the CVE-Compatible Products and Services page to review
information about CVE compatibility, and on all 52 officially compatible
products and 176 declared information security products and services.

LINKS:

CVE-Compatible Products and Services pages -
http://cve.mitre.org/compatible/

CVE Compatibility Process - http://cve.mitre.org/compatible/process.html

CVE Compatibility Requirements -
http://cve.mitre.org/compatible/requirements.html

-------------------------------------------------------------
HOT TOPIC:

CVE List to be Renumbered in October

Beginning October 19, 2005, the CVE List numbering scheme will undergo a
one-time-only modification to replace the "CAN" prefix with a "CVE"
prefix in CVE names.

The new numbering scheme will have the CVE prefix from the outset
followed by 8 numerals (e.g., CVE-1999-0067) and a status line
designating whether the name has Entry, Candidate, or Deprecated status.
Each CVE name will continue to include a brief description and
references.

Previously assigned CVE numbers will remain the same except for the
prefix being updated and the addition of the status, e.g., CAN-2005-0386
will be changed to CVE-2005-0386 with "Candidate" status.

Links to CANs in older security advisories will be redirected on the CVE
Web site to pages with the appropriate renumbered names.

LINKS:

Renumbering Q&A - http://cve.mitre.org/cve/renumber.html

CVE List - http://cve.mitre.org/cve

-------------------------------------------------------------
ALSO IN THIS ISSUE:

* CVE to Present Briefing at the "New England Electronic Crimes Task
   Force Meeting" on July 26th

Read these stories and more news at http://cve.mitre.org/news

---------------------------------------------------------------
Details/Credits + Subscribing and Unsubscribing

Managing Editor: Steve Christey, Information Security Technical Center.
Writer: Bob Roberge, Corporate Communications. The MITRE Corporation
(www.mitre.org) maintains CVE and provides impartial technical guidance
to the CVE Editorial Board on all matters related to ongoing development
of CVE.

To unsubscribe from the CVE-Announce e-newsletter, open a new email
message and copy the following text to the BODY of the message "SIGNOFF
CVE-Announce-list", then send the message to: listservlists.mitre.org.
To subscribe, send an email message to listservlists.mitre.org with the
following text in the BODY of the message: "SUBSCRIBE
CVE-Announce-List".

Copyright 2005, The MITRE Corporation. CVE and the CVE logo are
registered trademarks of The MITRE Corporation.

For more information about CVE, visit the CVE Web site at
http://cve.mitre.org or send an email to cvemitre.org.

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]