On 06/21/2013 11:30 AM, Mike Pagano wrote:
This should be written down and if it's not that's probably on me as I am the only kernel person (i think) that was involved in the decision and is still around.
Nope, I was there. It was the IA32 on amd64 syscall local root exploit that got us "blogged" about ... remember that :)
Anyhow, no brainer here. The kernel is not like the other software we stabilize. Somewhere in its configuration space and in the hardware space in which it will be run, there are bugs. Minor version bumps to address security issues followed by auto stabilization are the correct thing to do.
-- Anthony G. Basile, Ph.D. Gentoo Linux Developer [Hardened] E-Mail : [email protected] GnuPG FP : 1FED FAD9 D82C 52A5 3BAB DC79 9384 FA6E F52D 4BBA GnuPG ID : F52D4BBA
