Navigating the Sea of CVEs: Securing Your Linux Distributions - Jess Lowe & Holly Gong, Google
Don't miss out! Join us at the next Open Source Summit in Hyderabad, India (August 5); Amsterdam, Netherland (August 25-29); Seoul, South Korea (November 4-5). Join us at the premier vendor-neutral open source conference, where developers and technologists come together to collaborate, share knowledge, and explore the latest innovations and advancements in open source technology. Learn more at https://events.linuxfoundation.org/
Navigating the Sea of CVEs: Securing Your Linux Distributions - Jess Lowe & Holly Gong, Google
Are you drowning in a sea of vulnerability advisories, wondering why patching one thing doesn't fix everything? Despite a shared origin, a CVE's impact diverges significantly across Linux distributions. Consequently, a fix at the source does not automatically translate to comprehensive protection downstream. Each distribution requires independent patching, leading to a complex web of security advisories stemming from a single flaw.
In this talk, you'll learn how OSV tools can help you navigate this sea of advisories. We'll explore the root causes of advisory proliferation in Linux and demonstrate how OSV.dev aggregates and cross-references vulnerability data at scale to provide a more complete picture. You'll also see how OSV-Scanner accurately identifies vulnerabilities in your Linux systems, considering distribution-specific nuances and offering actionable guidance. By the end of this session, you'll be equipped with the knowledge and tools to patch smarter and secure your Linux infrastructure more effectively.
Видео Navigating the Sea of CVEs: Securing Your Linux Distributions - Jess Lowe & Holly Gong, Google канала The Linux Foundation
Navigating the Sea of CVEs: Securing Your Linux Distributions - Jess Lowe & Holly Gong, Google
Are you drowning in a sea of vulnerability advisories, wondering why patching one thing doesn't fix everything? Despite a shared origin, a CVE's impact diverges significantly across Linux distributions. Consequently, a fix at the source does not automatically translate to comprehensive protection downstream. Each distribution requires independent patching, leading to a complex web of security advisories stemming from a single flaw.
In this talk, you'll learn how OSV tools can help you navigate this sea of advisories. We'll explore the root causes of advisory proliferation in Linux and demonstrate how OSV.dev aggregates and cross-references vulnerability data at scale to provide a more complete picture. You'll also see how OSV-Scanner accurately identifies vulnerabilities in your Linux systems, considering distribution-specific nuances and offering actionable guidance. By the end of this session, you'll be equipped with the knowledge and tools to patch smarter and secure your Linux infrastructure more effectively.
Видео Navigating the Sea of CVEs: Securing Your Linux Distributions - Jess Lowe & Holly Gong, Google канала The Linux Foundation
Комментарии отсутствуют
Информация о видео
2 июля 2025 г. 22:54:27
00:41:56
Другие видео канала
