
























> but he had no idea what to do to prevent important vulnerabilities from drowning in the "great CVE garbage patch".
That's great, it looks like the "burn down the system" strategy ( https://www.youtube.com/watch?v=HeeoTE9jLjM&t=1686s ) is finally starting to work! I guess maybe we all misunderstood, and it's not the security tracking system that they wanted to burn down, but every production system running Linux which got pwned thanks to these shenanigans. Close enough!
I wonder if there's anybody honestly taking seriously the stream of absolute garbage that comes out of the kernel CNA anymore these days? If so, it seems to me it's high time to stop and just ignore them, and get professionals who actually understand what they are doing to analyze these reports, and provide actual, sensible triaging
此内容由惯性聚合(RSS阅读器)自动聚合整理,仅供阅读参考。 原文来自 — 版权归原作者所有。