Re: NVD report on vulnerabilities
On Sat, Mar 14, 2015 at 9:13 PM, adRnia . wrote:
> 1. A understanding of the GFI report on vulnerabilities in Linux. Other than
> Heartbleed and Shellshock vulnerability, how can we assess the vulnerability
> of Debian Linux OS and applications? On a generic level.
I've no idea what a GFI report is but perhaps one of these helps:
sudo apt-get install debsecan ; debsecan
> 2. What is the number of DDs and DMs working as part of the Debian project?
Debian related graphs, statistics and diagrams are linked from here:
These appear to be the membership, access and contribution metrics we
> 3. Is there a report or statistical figures showing the frequency of bugs,
> vulnerabilities identified vs patches and updates released?
These appear to be the security metrics we know about: