A hands-on look at CVE patching and support lifecycles and why your choice of binaries shapes the reliability and predictability of production systems.
That is a good question. Here's the overview (Table 3). It depends on severity. They are only published in retrospective. I couldn't find one for 2024. Might need to dig around a little more. Should give you a first idea.
I mean, as software engineer, I totally get it. Hard to "promise" and even harder as a company to "commercially commit" to something. So I ain't judge anyone not disclosing this.
That is a good question. Here's the overview (Table 3). It depends on severity. They are only published in retrospective. I couldn't find one for 2024. Might need to dig around a little more. Should give you a first idea.
https://www.redhat.com/en/resources/product-security-risk-report-2023
I mean, as software engineer, I totally get it. Hard to "promise" and even harder as a company to "commercially commit" to something. So I ain't judge anyone not disclosing this.