If all kernel bugs are security bugs, how do you keep your Linux safe?
If all kernel bugs are security bugs, how do you keep your Linux safe?
Since February, there've been 800 newly assigned CVEs. Your job? Update your main Linux distro more often.
You're viewing a single thread.
That’s a crazy “if”
"if" gcc had a Ken Thompson hack how do you secure checks notes anything
I'm genuinely worried sometimes that a Ken hack has been introduced. I don't know by who, but possibly some government agency. Then again, we also have a Minix system built into the CPU doing god knows what and we just accept that.
We do?
Ooh that’s not creepy at all. Also, damn you BSD license.
That is actually perfectly reasonable assumption to make in the absence of resources to determine the opposite, which would probably be many times the resources needed to actually fix the bug.
There are lots of things the Kernel controls that can have non security related bugs, e.g. controller with the wrong mapping https://github.com/torvalds/linux/commit/9131f8cc2b4eaf7c08d402243429e0bfba9aa0d6
It's a wild assumption to claim "All bugs in the Linux kernel are security issues", without any backing, whoever is making that claim needs to provide evidence since the default position for any program is that there are bugs that are not security issues.
defend one out there assumption with another, i guess.
who can tell if sidewinder force feedback (11684) is a security bug or just one that affects people using old joysticks. better treat it with all the seriousness of xv just to be sure!
lol