Josh,

Is this what you are meaning to do?

http://cwe.mitre.org/

The standard seems robust... implementation is another discussion all together.

R/
Andrew Harris
Dept of Defense


On Mon, Aug 5, 2013 at 1:13 PM, Josh Bressers <bressers@redhat.com> wrote:
Hi all,

I'm working to fill out a list of types of security flaws. I'm happy to
include obscure items on the list. I plan to use the list to document these
issues in some meaningful way in the future.

My brain seems to be stuck today, I'm not coming up with as many as I know
I should.

Feel free to lend an old man a hand:
http://etherpad-security.rhcloud.com/p/flaw-types

Thanks.

--
Josh Bressers / Red Hat Product Security Team
--
security mailing list
security@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/security