On April 20, the world became aware of a research program conducted out of the University of Minnesota (UMN) that involved submitting intentionally buggy patches for inclusion into the Linux kernel. Since then, a paper resulting from this work has been withdrawn, various letters have gone back and forth, and numerous patches from UMN have been audited. It's clearly time for an update on the situation.
Plus at least this time it was just a university conducting an experiment. I’m sure there are more serious attempts at compromising kernel security by entities like the NSA.
Plus at least this time it was just a university conducting an experiment. I’m sure there are more serious attempts at compromising kernel security by entities like the NSA.