| View previous topic :: View next topic |
| Author |
Message |
Goverp
Advocate
Joined: 07 Mar 2007
Posts: 2028
|
 Posted: Sun May 19, 2024 10:05 am Post subject: Frozen "stable" kernels may be less secure |
 |
|
A fascinating article referenced on slashdot says that distros "curating" backported security patches to some fixed stable kernel are less secure than just following the upstream latest stable kernel.
IIUC this doesn't apply to Gentoo, as our gentoo-foo kernels all track the latest stable pretty closely.
_________________
Greybeard |
|
| Back to top |
|
 |
Hu
Administrator
Joined: 06 Mar 2007
Posts: 21924
|
| Posted: Sun May 19, 2024 2:30 pm Post subject: |
|
|
| The underlying CIQ piece was also referenced on lwn.net. Comments there suggest that, at least in part, the analysis was flawed because it considers RHEL to have a security defect if the patch to fix that defect is not in the RHEL source, regardless of whether the patch is in a source file that RHEL does not even build. In particular, RHEL declines to ship some filesystems, and yet is penalized for not patching the filesystems that it does not ship. |
|
| Back to top |
|
|
|
|
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
|
|
Networking & Security
