[Am-info] Red Hat To Issue Vulnerability Alerts Using CVE
Fred A. Miller
fm@cupserv.org
Fri, 19 Apr 2002 16:25:42 -0400
Red Hat To Issue Vulnerability Alerts Using CVE
Linux supplier, Red Hat, announced that it will begin using the Common
Vulnerabilities and Exposures (CVE) standards list for future security
alerts and advisories. The US Government-funded CVE project provides
standardized definitions for security vulnerabilities and exploits.
http://linuxtoday.com/news_story.php3?ltsn=2002-04-11-002-26-SC-RH
[Editor's (Paller) Note: This announcement demonstrates security
awareness and leadership. Other system vendors may well follow Red
Hat's lead. Security vendors, such as ISS and Symantec, already provide
CVE references for the vulnerabilities they report. In addition,
the new global site security certification process is being based
on a consensus list of highest priority vulnerabilities developed
using CVE numbers. The complete CVE list with valuable additional
reference list is searchable at http://icat.nist.gov.]
--
Fred A. Miller
Systems Administrator
Cornell Univ. Press Services
fm@cupserv.org, www.cupserv.org
--- SuSE Linux v7.3 Pro---