On Sun, Aug 09, 2009 at 11:12:48PM -0400, Michael S. Gilbert wrote:
> > I guess it depends on where the information is coming from.
>
> the sources of the problems i have been reporting are either
> oss-security, fulldisclosure, or other distro security mailing list.
Anything from oss-security is picked up by MITRE anyway, so no need
for a separate request. For issues posted to full-disclosure, a
request on oss-security is a good idea and likewise for vendor
advisories (although most should have CVE IDs already).
Cheers,
Moritz
_______________________________________________
Secure-testing-team mailing list
[email protected]
http://lists.alioth.debian.org/mailman/listinfo/secure-testing-team
