Kernel security, year to date
Posted Sep 12, 2008 23:34 UTC (Fri) by bfields
In reply to: Kernel security, year to date
Parent article: Kernel security, year to date
They don't have CVE numbers and perhaps the authors didn't even bother to isolate the commit that introduced the problem.
How terrifying, I'm sure the fix is much worse as a consequence.
I don't think knowing the original commits would help much with the fixes in this particular case, but if you see any problems, speak up.
I agree that including the commit id's of the original commits would have been a good idea, and I'll try to do that in the future.
And if I could make a request for next time: could you please (please!) respond by email instead of lwn comments? Preferably cc'd to the relevant public lists, but if for some reason you just can't stand the idea of sending email to vger lists, then private mail will work too.
to post comments)