[Info-vax] Next release of OpenVMS x86
Simon Clubley
clubley at remove_me.eisner.decus.org-Earth.UFP
Tue Jul 21 08:43:10 EDT 2020
On 2020-07-20, Stephen Hoffman <seaohveh at hoffmanlabs.invalid> wrote:
>
> CVE comparisons across platforms are patently absurd, and for multiple reasons.
>
Including that not all platforms are equally popular.
> And vendor-initiated CVE comparisons, when the vendor doesn't request
> and doesn't issue CVEs for their own security fixes, is a questionable
> look.
>
Interesting. How many newly discovered security issues in VMS have VSI
fixed which should have had CVEs assigned ?
I can tell you that getting a CVE out of VSI was _hard_ work at the time
and that I was the one who had to get Mitre to make it public after some
public references became available.
(The PDF on the VSI website was only finally published at a later date
_after_ the vulnerability had already been discussed in public. It is
not one of the references in the CVE.)
Simon.
--
Simon Clubley, clubley at remove_me.eisner.decus.org-Earth.UFP
Walking destinations on a map are further away than they appear.
More information about the Info-vax
mailing list