Recent searches
Search options
I wanted to know simple daily Linux kernel CVE statistics just for fun, so wrote a script[1] and plotted the output.
$ ./vulns_stat.sh ./vulns/ 30 | ../gnuplot/plot.py --data_fmt table --type labeled-lines --xtics_rotate -90 cve_stat_30_days.png
[1] https://github.com/sjp38/lazybox/blob/master/cve_stat/vulns_stat.sh
@sj wow. so, that's 450 security bugs in one month? 
. can you confirm pls? what kernel?
@Issa I cannot confirm since my script may have bugs ;) What the script argues is that about 450 (exact number is 440) security bugs for upstream-supporting Linux kernels are identified and got their official identifiers (CVE) within last 30 days.
@Issa For more context, I believe this great LWN article could be very helpful: https://lwn.net/Articles/961978/
lwn.netA turning point for CVE numbers [LWN.net]
@sj am really shocked with no of bugs. linux is still far from being secure. but patching such high number is good & inevitable . what was the kernel that you scanned?
@Issa I didn't scan any kernel. Instead, I scanned others' kernel scan results :) You could use the source of the script for detail.