Hi All, I am using different versions of the kernel and linux-libc-headers in the project. Some modules are built using linux-libc-headers.
I'm wondering which version to use as the basis when searching for vulnerability listings on nvd.nist.gov. To my knowledge, linux-libc-headers only contain headers and do not include the kernel itself or source code. Additionally, the project may have only one kernel version. For example, the kernel is version 5.4, and linux-libc-headers is version 5.16. In this case, should I primarily check for vulnerabilities based on the kernel version, which is 5.4? or 5.16 also need to be checked?
-=-=-=-=-=-=-=-=-=-=-=- Links: You receive all messages sent to this group. View/Reply Online (#188743): https://lists.openembedded.org/g/openembedded-core/message/188743 Mute This Topic: https://lists.openembedded.org/mt/101792123/21656 Group Owner: [email protected] Unsubscribe: https://lists.openembedded.org/g/openembedded-core/unsub [[email protected]] -=-=-=-=-=-=-=-=-=-=-=-
