I don't think vulnerabilities in the VM kernel matter. There is no root password so malicious code in a VM can just switch to root and load a kernel module, right? Qubes does not depend on the security of the kernel that runs inside the VM.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds