Conversation

@gregkh Is the Linux CVE json in a repo somewhere that people can send pull requests to? That might make it easier to get updates/contributions from folks doing further analysis of kernel flaws.

2
1
0

@kees

I'm not @gregkh , but he recently pointed be to the repo, so I thought I could help out here:

https://git.kernel.org/pub/scm/linux/security/vulns.git/

1
0
0

@kernellogger @kees @gregkh I also considered using the repo, especially the nice json files under cve/published/. However, the README[1] under cve/ made me hesitate. Quoting the part that made me unsure if it can be used.

For now, ignore this as we are getting things working properly…

[1] https://git.kernel.org/pub/scm/linux/security/vulns.git/tree/cve/README

2
0
1
@kees What @kernellogger said, I would love to see patches sent for the stuff we have there!
0
0
6
@sj @kernellogger @kees Oops, need to fix that up, the repo is now handling "live" data, that is a hold-over from when it was just testing data...
0
0
3