We seem to have not yet officially announced this, so here it is...
Since November 2008 we are providing official CVE cross reference HTML
pages on our website.
Under the URL:
you can find all CVEs indexed where we have either released updates
already, have updates in QA or have published a statement on a
If you have questions regarding specific CVE numbers please feel free
to contact Novell Support or to mail security(a)suse.de
We are also currently working on is getting OVAL information published
officially ( currently below http://www.suse.de/~meissner/oval
OVAL is the XML representation of "CVE X fixed by RPM version-release
A-B for product P" data, further reading: http://oval.mitre.org