>
> You don't get security updates for backport kernels, so I'd strongly
> oppose it if you're running an exposed server. But for a desktop system
> in a normal kind of setup (behind a firewall, or on a private network)
> it should be within reasonable expectations of security.
Huh, this is an interesting information! I wondered, why there was no new bpo-kerrnel after the discovery of CVE-2023-6546 in April. Kernel 6.1.0- got an update, but 6.5.0-bpo NOT.
My question in the forum about this was not stisfactionally answered. But now we now: CVE-2023-6546 is still in 6.5.0-bpo!
Thanks for the advice.
Best
Hans