unhinge@programming.dev to Linux@lemmy.mlEnglish · 7 months agoHow do you track security vulnerabilities?message-squaremessage-square28fedilinkarrow-up10arrow-down10file-text
arrow-up10arrow-down1message-squareHow do you track security vulnerabilities?unhinge@programming.dev to Linux@lemmy.mlEnglish · 7 months agomessage-square28fedilinkfile-text
Do you rely on mailing lists or news articles for security vulnerabilities? Please share. I only got to know about xz/liblzma [1] and curl [2] [3] vulnerabilities through lemmy (maybe because of high severity?). 1 ↩︎ 2 ↩︎ 3 ↩︎
minus-squareBaalInvoker@lemmy.eco.brlinkfedilinkPortuguêsarrow-up0·7 months agoI rely on Lemmy and in pacman -Syyu everyday
minus-squareunhinge@programming.devOPlinkfedilinkEnglisharrow-up0·edit-27 months agoThen, what does a package maintainer rely on? Edit: I’m so dumb. It’s obvious they’d check original developer’s repo or issue tracker. I’m sorry
minus-squareBaalInvoker@lemmy.eco.brlinkfedilinkarrow-up0·7 months agoI don’t know… I guess in mailing lists and pages like RSS feed from main enterprises like SuSE, Red Hat and Canonical
I rely on Lemmy and in
pacman -SyyueverydayThen, what does a package maintainer rely on?Edit: I’m so dumb. It’s obvious they’d check original developer’s repo or issue tracker. I’m sorry
I don’t know… I guess in mailing lists and pages like RSS feed from main enterprises like SuSE, Red Hat and Canonical