Thursday, 2026-06-18

*** rosmaita1 is now known as rosmaita		12:01
fungi	per comment on bug 2152240, someone assigned cve-2026-55748 to ossn-0097	20:35
fungi	"NOTE: some parties consider this a security hardening opportunity to address certain types of user error, not a vulnerability." (from the cve description field)	20:37
gouthamr	ah	20:40
gouthamr	i can edit the OSSN and publish an errata	20:40
fungi	i probably wouldn't bother distributing errata (though we can if you like), but mentioning the assignment in the ossn may at least help dissuade duplicate assignments	20:42
gouthamr	yes	20:43
gouthamr	this should only be to openstack lists though? i'd like to..	20:43
fungi	sure, wherever you like, we don't really have much established process around ossn edits	20:44
gouthamr	++	20:46
opendevreview	Goutham Pacha Ravi proposed openstack/security-doc master: OSSN-0097: Add CVE reference https://review.opendev.org/c/openstack/security-doc/+/994002	20:48
opendevreview	Goutham Pacha Ravi proposed openstack/security-doc master: OSSN-0097: Add CVE reference https://review.opendev.org/c/openstack/security-doc/+/994002	20:53
fungi	gouthamr: out of curiosity, how did you determine which cna assigned that cve?	21:05
gouthamr	i googled the guy :P but, its a guess	21:05
gouthamr	maybe zigo can confirm	21:05
fungi	oh, i mean i know carnil is active on dsa but he didn't say where he saw the cve assignment	21:07
gouthamr	true, that's not even necessary detail	21:07
gouthamr	let me edit the commit message	21:07
opendevreview	Goutham Pacha Ravi proposed openstack/security-doc master: OSSN-0097: Add CVE reference https://review.opendev.org/c/openstack/security-doc/+/994002	21:08
opendevreview	Merged openstack/security-doc master: OSSN-0097: Add CVE reference https://review.opendev.org/c/openstack/security-doc/+/994002	21:16
gouthamr	ty fungi	21:17
fungi	of course!	21:19
gouthamr	sent emails now	21:19

Generated by irclog2html.py 4.1.0 by Marius Gedminas - find it at https://mg.pov.lt/irclog2html/!