Conversation

Notices

1. Embed this notice
   Vegard Nossum (vegard@mastodon.social)'s status on Friday, 18-Oct-2024 14:56:43 JST Vegard Nossum

   in reply to

   • Cengiz Can

   @cengiz_io No... as people have pointed out, CVSS doesn't map that well to kernel bugs, for various reasons. I wanted to have a second go at making this a useful doc but so far haven't found the time 😔

   • Haelwenn /элвэн/ :triskell: likes this.
   • Embed this notice
     Cengiz Can (cengiz_io@mastodon.social)'s status on Friday, 18-Oct-2024 14:56:45 JST Cengiz Can

     in reply to

     @vegard is this merged? Hopefully?

   • Embed this notice
     Vegard Nossum (vegard@mastodon.social)'s status on Friday, 18-Oct-2024 14:56:46 JST Vegard Nossum

     Sent out an RFC doc on assessing security impact of Linux patches: https://lore.kernel.org/all/20240311150054.2945210-2-vegard.nossum@oracle.com/

     Rendered page: https://vegard.github.io/linux/2024-03-11/security-assessment.html

     Bingo card:
     ☐ security theater
     ☐ circus
     ☐ meaningless
     ☐ idiotic
     ...what did I miss?

     Haelwenn /элвэн/ :triskell: likes this.