Debian just released a kernel update with hundreds of CVE IDs (lists.debian.org)
from teh_shame@infosec.pub to cybersecurity@infosec.pub on 07 May 01:23
https://infosec.pub/post/11962249

It’s quite the list

#cybersecurity

threaded - newest

adespoton@lemmy.ca on 07 May 02:52 next collapse

Anyone know what the upstream schedule is? Do these kernel versions map to other distributions?

thomask@lemmy.sdf.org on 07 May 04:00 next collapse

Hmm wasn’t there some kerfuffle recently about how the kernel was going to start self-issuing CVEs en masse? Is this the result of that plan?

barkingspiders@infosec.pub on 07 May 07:18 collapse

Lol, been watching these emails for work for many years now and noted the weird number of CVEs too. I’d love more context if anyone knows. Something specific get cleaned up in the kernel that had a big impact?