On Sun, 2021-12-26 at 12:23 -0600, Chris Adams wrote: > Often, when the vendors do any security updates, they'll do just the > minimum needed (which does make sense, since it's also the least > likely to break devices that can be difficult or impossible to > recover from an update failure). If the kernel doesn't have any > known and exploitable security issues, it'll be left as-is. That's one of the things I have against domestic NASs. You buy one and find out that it's software is actually 2 years out of date (so much for being a "new" thing). You may or may not find that there's any updates available for it. You're quite likely to find that updates simply remove a (potentially) vulnerable feature (possibly one that you actually want), rather than fix it. Samsung do that trick with their phones. If enough people complain about their faulty software, they delete it instead of fix it. It's about the only way of de-bloating their shovelware. -- uname -rsvp Linux 3.10.0-1160.49.1.el7.x86_64 #1 SMP Tue Nov 30 15:51:32 UTC 2021 x86_64 Boilerplate: All unexpected mail to my mailbox is automatically deleted. I will only get to see the messages that are posted to the mailing list. _______________________________________________ users mailing list -- users@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to users-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/users@xxxxxxxxxxxxxxxxxxxxxxx Do not reply to spam on the list, report it: https://pagure.io/fedora-infrastructure