r bug is a vulnerability? What impact
are you hoping to achieve?
Please reconsider how you are requesting CVEs.
CVE assignment based on commit message allows unscrupulous comitters to
take advantage of CNAs who do so and _print CVEs_ for their resume.
Kind regards,
Hi Meng,
In your recent mass posts to FD, are you reporting vulnerabilities or
bug reports which have words like "segfault" in the title? What benefit
do you see this having? Have you spoken to each upstream project before
requesting a CVE be assigned?
Thank you,
Mark Esler
On
