Hacker News new | past | comments | ask | show | jobs | submit login

What would motivate someone to do that? Sounds misleading to file a bunch of CVEs years after the fact.



The idea is, a lot of tooling relies on the CVE system to determine if a system is vulnerable, and so making sure that there is an actual CVE filed for every security bug is a good idea for the robustness of said tooling.

At least, that's my understanding.




Join us for AI Startup School this June 16-17 in San Francisco!

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: