Debian just released a kernel update with hundreds of CVE IDs
(lists.debian.org)
from teh_shame@infosec.pub to cybersecurity@infosec.pub on 07 May 2024 01:23
https://infosec.pub/post/11962249
from teh_shame@infosec.pub to cybersecurity@infosec.pub on 07 May 2024 01:23
https://infosec.pub/post/11962249
It’s quite the list
threaded - newest
Anyone know what the upstream schedule is? Do these kernel versions map to other distributions?
Hmm wasn’t there some kerfuffle recently about how the kernel was going to start self-issuing CVEs en masse? Is this the result of that plan?
Lol, been watching these emails for work for many years now and noted the weird number of CVEs too. I’d love more context if anyone knows. Something specific get cleaned up in the kernel that had a big impact?