Do you rely on mailing lists or news articles for security vulnerabilities? Please share.

I only got to know about xz/liblzma [1] and curl [2] [3] vulnerabilities through lemmy (maybe because of high severity?).


  1. 1 ↩︎

  2. 2 ↩︎

  3. 3 ↩︎

  • @delirious_owl
    link
    43 months ago

    I just use unattended-upgrades and forget about it

    • @corsicanguppy@lemmy.ca
      link
      fedilink
      5
      edit-2
      3 months ago

      Same for the RPM ecosystem: yum-cron and walk away. Been that way for almost 25 years.

      Having been involved with OS Security in the middle of my career, I also still watch feeds like I used to; just, different ones, now.