Announcement
Collapse
No announcement yet.
Android, Debian & Ubuntu Top List Of CVE Vulnerabilities In 2016
Collapse
X
-
Originally posted by dungeon View PostHe, he, i randomly clicked on one of those for Debian and got this:
CVE-2016-6130 : Race condition in the sclp_ctl_ioctl_sccb function in drivers/s390/char/sclp_ctl.c in the Linux kernel before 4.6 allows local users to obtain sensitive information from kernel memory by changing a certain length value, aka a "double fetch" vulnerability.
How can be that assinged to Debian 8 when linux kernel 4.5.5 is not in Debian 8 I guess someone running backported kernel at the time found an issue or something
- Likes 3
Comment
-
Originally posted by Slartifartblast View PostOr wintards in Seattle trying to make Linux look bad, remember "get the facts".
- Likes 2
Comment
-
Originally posted by starshipeleven View PostI'm not seeing Java (the VM). What tricks did they pull to not be shown in there?
So yeah, I think it's plausible enough... it's not like they didn't have any CVEs raised in 2016, just not enough to put them in the top 50 (they had 37 raised).
Also, Java has never really quite as bad as the reputation suggests. The bad rep comes from a few years - 2008 and 2013 - where a lot of serious issues were found... the latter probably found by an audit, since there's a large number of very similar issues, almost all of them fixed in the same release.
- Likes 1
Comment
-
Originally posted by Slartifartblast View Post
Or wintards in Seattle trying to make Linux look bad, remember "get the facts".
- Likes 2
Comment
-
Originally posted by starshipeleven View PostI'm not seeing Java (the VM). What tricks did they pull to not be shown in there?
Also Acrobat fucking Reader (various flavors) trails it by only a few dozens of CVEs less.
- Likes 1
Comment
-
Originally posted by bug77 View PostI don't think JVM is that bad. The Java browser plugin was the stuff of nightmares though.
Comment
-
I wondering why Windows XP is not in the list, funny that it still has more market than OS X and Linux combined... about 9% of Desktops - that is quite big really
Also very interestingly, Windows XP actually seems started to grow up again:
Windows XP dropped from 10.09 percent in May 2016 to 9.78 percent the next month, before growing to 10.34 percent once again in July. Declines were recorded until November when it recorded a growth from 8.27 percent the month before to 8.63 percent. And this growth continued in December to reach 9.07 percent.
This means that in just two months, an operating system that no longer receives updates since 2014 increased from 8.27 percent to 9.07 percent, in a time when Microsoft is pushing for everyone to adopt Windows 10.
Comment
-
Originally posted by dungeon View PostI wondering why Windows XP is not in the list,
It has joined Win2000, Win98 and win95 in the nirvana of 0-CVE operating systems.
Also very interestingly, Windows XP actually seems started to grow up again:
http://news.softpedia.com/news/windo...y-511474.shtml
Still better than Steam survey, on average, but there is a large margin for variability.
Comment
Comment