Gentoo Logo
Gentoo Spaceship




Note: Due to technical difficulties, the Archives are currently not up to date. GMANE provides an alternative service for most mailing lists.
c.f. bug 424647
List Archive: gentoo-security
Navigation:
Lists: gentoo-security: < Prev By Thread Next > < Prev By Date Next >
Headers:
To: gentoo-security@g.o
From: Robert Buchholz <rbu@g.o>
Subject: Re: Kernel Security + KISS
Date: Mon, 18 Feb 2008 05:12:35 +0100
On Sunday, 17. February 2008, Eduardo Tongson wrote:
> What specific kernel knowledge is needed to get a Kernel advisory up
> and running ?

Between becoming aware of a vulnerability in Linux and drafting an advisory 
for one or all kernel sources comes the part where you review which 
versions of which kernel sources are affected and unaffected. You also 
need to pay attention to specifics of the added patchsets, which might 
duplicate vulnerabilities.

Parts of the job can indeed be done without Kernel and C knowledge, but 
some cannot. So if we draft a new kernel security *team*, people without C 
and kernel knowledge are helpful -- some others need to have it, though.

Robert


Attachment:
signature.asc (This is a digitally signed message part.)
Replies:
Re: Kernel Security + KISS
-- Harlan Lieberman-Berg
References:
Kernel Security + KISS
-- Casey Link
Re: Kernel Security + KISS
-- Sune Kloppenborg Jeppesen
Re: Kernel Security + KISS
-- Eduardo Tongson
Navigation:
Lists: gentoo-security: < Prev By Thread Next > < Prev By Date Next >
Previous by thread:
Re: Kernel Security + KISS
Next by thread:
Re: Kernel Security + KISS
Previous by date:
Re: Kernel Security + KISS
Next by date:
Re: Encrypting a user home folder on a laptop


Updated Jun 17, 2009

Summary: Archive of the gentoo-security mailing list.

Donate to support our development efforts.

Copyright 2001-2013 Gentoo Foundation, Inc. Questions, Comments? Contact us.