Home News Software Linux Kernel Development A Story of Three Kernel Vulnerabilities

A Story of Three Kernel Vulnerabilities

A security-oriented firm called Trustwave recently sent out a preview of an upcoming report [PDF] that features some focused criticism of how the Linux community handles security vulnerabilities. Indeed, it says: "Software developers vary greatly in their ability to respond and patch zero-day vulnerabilities. In this study, the Linux platform had the worst response time, with almost three years on average from initial vulnerability to patch." Whether or not one is happy with how security updates work with Linux, three years sounds like a rather longer response time than most of us normally expect. Your editor decided to examine the situation by focusing on two vulnerabilities that are said to be included in the Trustwave report and one that is not.

Read more at LWN


Subscribe to Comments Feed
  • jetole Said:

    Thanks for linking to a subscription site. I thought it sounded like an interesting story until I clicked and realized I needed to subscribe to a site to read it. You should also keep an eye on The Wall Street Journal for great places to find stories.

  • Michael Said:

    It will go out of subscription next week and be available as per their editorial policy.

Who we are ?

The Linux Foundation is a non-profit consortium dedicated to the growth of Linux.

More About the foundation...

Frequent Questions

Linux Training / Board