Hi! > Unfortunately for distributions, there may be various customers or > government agencies which expect or require all CVEs to be addressed > (regardless of severity), which is why we're backporting these to stable > and trying to close those gaps. Customers and government will need to understand that with CVEs assigned the way they are, addressing all of them will be impossible (or will lead to unstable kernel), unfortunately :-(. Pavel -- DENX Software Engineering GmbH, Managing Director: Erika Unter HRB 165235 Munich, Office: Kirchenstr.5, D-82194 Groebenzell, Germany
Attachment:
signature.asc
Description: PGP signature
