• catloaf@lemm.ee
    link
    fedilink
    English
    arrow-up
    1
    ·
    7 months ago

    Yes and no. The short version is right, but it’s not a GFY. If anything, device OEMs are going to be positively ecstatic that anyone who cares about these vulnerability trackers are going to have to buy a new device every five years.

    • aardA
      link
      fedilink
      arrow-up
      1
      ·
      7 months ago

      I wasn’t talking about OEMs - and companies who do somewhat care about vulnerabilities already have policies in place only allowing specific device vendors and specific OS versions. There might be a tiny bit more once that gets hooked into some automation, but probably pretty much negligible. If you have a 5 year old device and your vendor isn’t patching it anymore getting rid of it is the right choice, with or without looking at specific vulnerabilities.