| ▲ | rwmj 6 hours ago |
| For sure, but you don't need to file CVEs for every regular bug. |
|
| ▲ | Skunkleton 5 hours ago | parent [-] |
| In the context of the kernel, it’s hard to say when that’s true. It’s very easy to fix some bug that resulted in a kernel crash without considering that it could possibly be part of some complex exploit chain. Basically any bug could be considered a security bug. |
| |
| ▲ | SSLy 5 hours ago | parent [-] | | plainly, crash = DoS = security issue = CVE. QED. | | |
| ▲ | michaelt 4 hours ago | parent | next [-] | | BRB, raising a CVE complaining the OOM killer exists. | | |
| ▲ | pamcake 3 hours ago | parent | next [-] | | Memory leaks are usually (accurately) treated as DoS. OoM killer is a mitigation to contain them and not DoS the entire OS. | |
| ▲ | worthless-trash an hour ago | parent | prev [-] | | I could be wrong. But operation by design isn't considered a bug. |
| |
| ▲ | 5 hours ago | parent | prev [-] | | [deleted] |
|
|
