@whitequark✧✦Catherine✦✧ lol this reminds me of redhat versioning, where they backport patches but don't make any changes to the software's own reported version so it's impossible to inventory whether or not you have vulnerable versions installed.
@gsuberlandGraham Sutherland / Polynomial @whitequark✧✦Catherine✦✧ Don't forget the old RHEL and Suse builds that kept making up 2.6.something kernel numbers well in to the 3.x days because it took a few years for enterprise stuff (Ansys, et al.) to stop breaking if they saw anything not 2.6.x.
If you have a fediverse account, you can quote this note from your own instance. Search https://infosec.exchange/users/AMS/statuses/115947392410382167 on your instance and quote it. (Note that quoting is not supported in Mastodon.)