Reviewing the CVE process and the CNA rules 4.0
As you probably know, the Eclipse Foundation is a CNA (CVE Numbering Authority), responsible for assigning vulnerability identification numbers, known...
security
Using GitHub Private Vulnerability Reporting by Eclipse Foundation Projects
Eclipse Foundation projects can request to use GitHub Private Vulnerability Reporting . This feature allows committers of projects hosted on...
Update to vulnerability description - CVSS 4.0
A vulnerability description includes several fields, like the title and description. However, one is causing difficulties for people writing CVE...
Eclipse CycloneDDS Security Audit Has Been Completed
Today, the Eclipse Foundation released the results of our security audit for Eclipse CycloneDDS . Findings from the audit have...
Eclipse Temurin Security Audit Has Been Completed
Today, the Eclipse Foundation released the results of our security audit for the Eclipse Temurin project . Findings from the...
Securing the Future: 2FA Now Mandatory for Eclipse Foundation Committers
The Eclipse Foundation is pleased to announce the successful implementation of two-factor authentication (2FA) for all committers on both gitlab.eclipse.org...
Join the Conversation: The 2024 IoT & Embedded Developer Survey is Now Open!
Exciting news - the 2024 IoT & Embedded Developer Survey is now open! This comprehensive survey provides developers and industry...
Eclipse Kuksa Security Audit Has Been Completed
Today, the Eclipse Foundation released the results of our security audit for the Eclipse Kuksa project . Findings from the...
OCX 2024: Celebrating Community, Code and Collaboration
TL;DR - Don't miss the opportunity to participate in Open Community Experience 2024, a new conference for our vibrant community...
202404-01 Eclipse Foundation Security Advisory
The Eclipse Foundation Security Team has been made aware of the vulnerability VU#421644 affecting multiple HTTP/2 implementations, that could cause...