How do you track security vulnerabilities? unhinge ( @unhinge@programming.dev ) Linux@lemmy.mlEnglish • 3 months ago message-square28fedilinkarrow-up157
arrow-up157message-squareHow do you track security vulnerabilities? unhinge ( @unhinge@programming.dev ) Linux@lemmy.mlEnglish • 3 months ago message-square28fedilink
Do you rely on mailing lists or news articles for security vulnerabilities? Please share. I only got to know about xz/liblzma [1] and curl [2] [3] vulnerabilities through lemmy (maybe because of high severity?). 1 ↩︎ 2 ↩︎ 3 ↩︎
minus-square Last ( @LastoftheDinosaurs@reddthat.com ) linkfedilink4•3 months agoSame here. Our servers are so out of date that we might not have a version of xz with any commits from Jia Tan at all.
minus-square delirious_owl ( @delirious_owl@discuss.online ) linkfedilink1•3 months agoI don’t think up-to-date Debian stable even got it before it was discovered. No prod servers should be affected
Same here. Our servers are so out of date that we might not have a version of xz with any commits from Jia Tan at all.
I don’t think up-to-date Debian stable even got it before it was discovered. No prod servers should be affected