Kroah-Hartman: Linux CVEs, more than you ever wanted to know

by
jzb
from LWN.net on (#722PC)

Greg Kroah-Hartman is writinga series of blog posts about Linux becoming a CertificateNumbering Authority (CNA):

It's been almost 2 full years since Linux became a CNA (CertificateNumbering Authority) which meant that we (i.e. the kernel.orgcommunity) are now responsible for issuing all CVEs for the Linuxkernel. During this time, we've become one of the largest creators ofCVEs by quantity, going from nothing to number 3 in 2024 to number 1in 2025. Naturally, this has caused some questions about how we areboth doing all of this work, and how people can keep track of it.

So far, Kroah-Hartman has published the introductory post, as wellas a detailedpost about kernel version numbers that is well worth reading.

External Content
Source RSS or Atom Feed
Feed Location http://lwn.net/headlines/rss
Feed Title LWN.net
Feed Link https://lwn.net/
Reply 0 comments