Hacker Newsnew | past | comments | ask | show | jobs | submit | callmejonas's commentslogin

CVE are assigned from the year the vulnerability was found. Not when it was announced.

However, a CNA like Firefox does not allocate CVE as they need them. They first ask Mitre for a block of X CVE to use as they need. They probably got a new block in September.


If you have not read the Equifax Data Breach Report put out by the US Congress, I highly recommend it. The security issues at Equifax went far beyond "failing to apply a security patch."

https://republicans-oversight.house.gov/wp-content/uploads/2...


This sounds very much like Diplomacy (https://en.wikipedia.org/wiki/Diplomacy_(game)). Very cool.


Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: