1. 5

  2. 1

    I recently had a good conversation on Twitter about this repo. The way that Linux (mis-)handles security bugs makes tracking vulnerabilities in the Linux kernel incredibly difficult. We can’t rely on just CVE data. The problem is compounded with the large number of stable branches. Many patches don’t get backported, or are backported improperly.