diff mbox series

[htdocs] glibc is now a CNA

Message ID 20240207124338.1400513-1-siddhesh@gotplt.org
State New
Headers show
Series [htdocs] glibc is now a CNA | expand

Commit Message

Siddhesh Poyarekar Feb. 7, 2024, 12:43 p.m. UTC 
Drop the line about glibc not being a CNA and link to the CVE page about
us.

https://www.cve.org/Media/News/item/news/2024/02/06/GNU-C-Library-Added-as-CNA

Signed-off-by: Siddhesh Poyarekar <siddhesh@gotplt.org>
---
 security.html | 14 +++++++-------
 1 file changed, 7 insertions(+), 7 deletions(-)
diff mbox series

Patch

diff --git a/security.html b/security.html
index 2b73211..7b044c2 100644
--- a/security.html
+++ b/security.html
@@ -126,13 +126,13 @@  directory on the master branch of the glibc git repository.
 <h2>CVE management</h2>
 
 <p>
-glibc does not yet have a CVE Numbering Authority (CNA), but this may
-change in the future.  For glibc CVEs you may contact the security team
-for help with any updates you'd like to make. This would
-include updates to the contents of a CVE advisory or requests to update,
-dispute or reject a CVE.  For CNA related requests please use the mailing
-list to contact the security team members, and not their private email
-addresses.
+For CVEs assigned by the
+<a href="https://www.cve.org/PartnerInformation/ListofPartners/partner/glibc">glibc CVE Numbering Authority (CNA)</a>,
+you may contact the security team for help with any updates you'd like
+to make. This would include updates to the contents of a CVE advisory or
+requests to update, dispute or reject a CVE.  For CNA related requests
+please use the mailing list to contact the security team members, and
+not their private email addresses.
 </p>
 
 <a id="keys"><h2>GPG Keys</h2></a>