|
|
|
|
|
|
by mmc
836 days ago
|
|
|
> There are other ways to lessen the CVE workload. > 1. Disable unused components with defconf or make menuconfig. +1 for avoiding vulnerabilities, but were you saying this lessens the CVE evaluation workload? I'd love to hear about automation for evaluating CVEs based on a kernel config. I've done a fair amount of that manually and I'm not aware of any metadata in the CVE records (or in the CVE json in gregkh's new vulns repo) that includes config metadata. |
|
|