[Secure-testing-team] For discussion: security support strategy for the wheezy kernel
Michael Gilbert
michael.s.gilbert at gmail.com
Tue Feb 8 04:03:14 UTC 2011
On Mon, 7 Feb 2011 22:54:53 -0500 Michael Gilbert wrote:
> Even playing the numbers game with a bit more thoughtful analysis with
> the LWN data, lenny looks a lot better. It can be seen that lenny
> (2.6.26) was vulnerable to 69% (36 out of 52) of the vulnerabilities
> listed there, and squeeze (2.6.32) was vulnerable to 98% (51 out of
> 52). In my opinion that's a rather substantial difference, and thus a
> problem worth pondering.
Minor correction: lenny was vulnerable to 67% (35 out of 51) and
squeeze was vulnerable to 98% (50 out of 51). I had missed the issue
that was fixed in 2.6.20 and didn't affect either releases.
Best wishes,
Mike
More information about the Secure-testing-team
mailing list