An additional quote
An additional quote
Posted Feb 22, 2024 8:36 UTC (Thu) by Aissen (subscriber, #59976)In reply to: An additional quote by bluca
Parent article: A turning point for CVE numbers
Anyone who cares about that should run production canaries and do actual regression testing. Yes, the Linux kernel testing strategy is lacking, but why put the onus on the project to do what *you* care about ? Anyone can build and test for regressions. And even do that in advance for the -rc versions (stable or upstream), so that when the release comes, you already know if it's breaking anything.