On Sun, Apr 28, 2019 at 11:51 PM Stanislav Malyshev
wrote:
> I have set up PHP as CNA (CVE Identifiers authority) with MITRE. That
> means that we will be assigning our own CVEs from now on. The process in
> broad strokes works like this:
>
> 1. We request a block of numbers
> 2. When we have sec
Hi!
I have set up PHP as CNA (CVE Identifiers authority) with MITRE. That
means that we will be assigning our own CVEs from now on. The process in
broad strokes works like this:
1. We request a block of numbers
2. When we have security bug, we use one of the numbers in the block
3. We create CVE
