> Of course that already exists in a way, in the CVE vulnerability database.
CVE could be it.
My beef is that from the 20 CVEs linked to on the Jan 17 security page, six are still "reserved", i.e. contain no information. That's 30 percent duds, ten days after the LWN issue was released. Are they understaffed?
Thanks to the people at Debian doing the security tracking work.