This article addresses the question of whether the Linux Kernel is secure enough. And what is "enough"?
http://arstechnica.com/security/2016...-needs-fixing/
"...
Worse, the average lifetime of a critical security bug in the Linux kernel, from introduction during a code commit to public discovery and having a patch issued, averages three years or more. According to Cook’s analysis, critical and high-severity security bugs in the upstream kernel have lifespans from 3.3 to 6.4 years between commit and discovery.
..."
Is it time that Lilnux has more attention paid to this possible weak spot? The playing field had changed since Linux was introduced.
http://arstechnica.com/security/2016...-needs-fixing/
"...
Worse, the average lifetime of a critical security bug in the Linux kernel, from introduction during a code commit to public discovery and having a patch issued, averages three years or more. According to Cook’s analysis, critical and high-severity security bugs in the upstream kernel have lifespans from 3.3 to 6.4 years between commit and discovery.
..."
Is it time that Lilnux has more attention paid to this possible weak spot? The playing field had changed since Linux was introduced.
Comment