Perhabs CL official/community web-resources need a CL-focused security cve-list/database that will display the state of security issues like:
- target: package/bundle, kernel (versions), etc
- status: affected / fixed
- urgent_solution: (when still affected) like rollback to kernel-lts, or shell-script for temporary mitigation
In general, something like security.archlinux.org at least.
P.S.: Maybe this topic should be moved to General Discussion. But the question is still relevant: “How to properly track security events for CL that has its own versioning of bundles?”.