Embed Notice

HTML Code

<blockquote style="position: relative; padding-left: 55px;"><section><a href="https://social.kernel.org/objects/88cf21df-130f-4c42-beb6-dfcd8131c733">Greg K-H (gregkh@social.kernel.org)'s status on Thursday, 27-Feb-2025 02:36:26 JST</a><a href="https://social.kernel.org/users/gregkh" title="gregkh@social.kernel.org"><img src="https://gnusocial.jp/avatar/101452-48-20230224172713.webp" width="48" height="48" alt="Greg K-H" style="position: absolute; left: 0; top: 0;">Greg K-H</a></section><article>Perl is now a CNA, able to assign their own CVE ids, this is great news!<br><a href="https://security.metacpan.org/2025/02/25/cpansec-is-cna-for-perl-and-cpan.html">https://security.metacpan.org/2025/02/25/cpansec-is-cna-for-perl-and-cpan.html</a><br><br>Just in time for my talk about this very topic in a few weeks about how all open source projects should be doing this: <br> <a href="https://lfms25.sched.com/event/1urXE/take-control-over-your-projects-cve-entries-before-someone-else-does-greg-kroah-hartman-linux-foundation">https://lfms25.sched.com/event/1urXE/take-control-over-your-projects-cve-entries-before-someone-else-does-greg-kroah-hartman-linux-foundation</a></article><footer><a rel="bookmark" href="https://gnusocial.jp/conversation/4636745#notice-9076028">In conversation</a><time datetime="2025-02-27T02:36:26+09:00" title="Thursday, 27-Feb-2025 02:36:26 JST">about a month ago</time> <span>from <span><a href="https://social.kernel.org/objects/88cf21df-130f-4c42-beb6-dfcd8131c733" rel="external" title="Sent from social.kernel.org via ActivityPub">social.kernel.org</a></span></span><a href="https://social.kernel.org/objects/88cf21df-130f-4c42-beb6-dfcd8131c733">permalink</a><h4>Attachments</h4><ol><li><article><header><div>No result found on File_thumbnail lookup.</div><h5><a href="https://security.metacpan.org/2025/02/25/cpansec-is-cna-for-perl-and-cpan.html">CPANSec is CNA for Perl and the CPAN ecosystem</a></h5><div> from <span>Stig Palmquist, Timothy Legge and Breno G. de Oliveira</span></div></header><div>The CPAN Security Group was authorized by the CVE Program as a CVE Numbering Authority (CNA) on Feb 25, 2025. A CNA assigns and manages CVE identifiers for projects in their scope.</div><footer></footer></article></li><li><article><header><div>Domain not in remote thumbnail source whitelist: lfms25.sched.com</div><h5><a href="https://lfms25.sched.com/event/1urXE/take-control-over-your-projects-cve-entries-before-someone-else-does-greg-kroah-hartman-linux-foundation">The Linux Foundation Member Summit 2025: Take Control Over Your Project's CVE Ent...</a></h5><div></div></header><div>View more about this event at The Linux Foundation Member Summit 2025</div><footer></footer></article></li></ol></footer></blockquote>

Corresponding Notice

Embed this notice
Greg K-H (gregkh@social.kernel.org)'s status on Thursday, 27-Feb-2025 02:36:26 JST Greg K-H
Perl is now a CNA, able to assign their own CVE ids, this is great news!
https://security.metacpan.org/2025/02/25/cpansec-is-cna-for-perl-and-cpan.html

Just in time for my talk about this very topic in a few weeks about how all open source projects should be doing this:
https://lfms25.sched.com/event/1urXE/take-control-over-your-projects-cve-entries-before-someone-else-does-greg-kroah-hartman-linux-foundation
In conversationabout a month ago from social.kernel.orgpermalink
Attachments
1. No result found on File_thumbnail lookup.
  CPANSec is CNA for Perl and the CPAN ecosystem
  from Stig Palmquist, Timothy Legge and Breno G. de Oliveira
  The CPAN Security Group was authorized by the CVE Program as a CVE Numbering Authority (CNA) on Feb 25, 2025. A CNA assigns and manages CVE identifiers for projects in their scope.
2. Domain not in remote thumbnail source whitelist: lfms25.sched.com
  The Linux Foundation Member Summit 2025: Take Control Over Your Project's CVE Ent...
  View more about this event at The Linux Foundation Member Summit 2025

Public

Embed Notice

HTML Code

Corresponding Notice