Trace: cve_linux_vs_windows

CVE Microsoft Windows vs GNU/Linux

Table of Contents

This little article try to make a honest comparation between vulnerabilities founded in CVE database about Microsoft Windows and GNU/Linux, is not useful but fun.

I take the stadistics of Windows 7, 8, 8.1 and 10, with Linux I used only the data from 2009 to 2017. Why? because the older record of Windows 7 is from the same year.

Resume

Total of Windows 3051

Total of Linux 1369

Despite GNU/Linux is the winner… is less used than Microsoft Windows =(…

Update 1

I want try to eliminate the factor of utilization…

  • Use space data

NETMARKETSHARE affirm that Mac OS X have a 6.25% vs GNU/Linux 2.09% vs Microsoft Windows 91.66%.

I get data about BSD (FreeBSD or OpenBSD), the usage statistics is 0.14%. Who uses BSD to browse the web?

  • Commercial usage

To be more objetive, HG Data have data about utilization of this operating systems on enteprises.

146,216 companies affirm that use Windows 7, 8 and 10, 1,627 OpenBSD, 29,930 FreeBSD, 42,028 Mac OS X and 336,651 GNU/Linux. Surprise!!!

OK, the new numbers:

Total of Windows 3051

Total of Linux 1369

Total of Mac OS X 1313

Total FreeBSD 88

Total OpenBSD 57

The winner? If you compare the amount of people that use Windows vs the amount of security issues and related, you want to use Windows, based in the same, you don't want to use Mac OS X =$, but if you want to use an operating system that nobody wants make virus, OpenBSD is the winner. GNU/Linux have a lot of utilization on companies with less security issues and related compared with Microsoft Windows.

Make you choice!

Details in tables

Year# of VulnerabilitiesDoSCode ExecutionOverflowMemory CorruptionSql InjectionXSSDirectory TraversalHttp Response SplittingBypass somethingGain InformationGain PrivilegesCSRFFile Inclusion# of exploitsWindows 10
20155341736 10426 Windows 10
2016172647237 193182 Windows 10
201768171341 1 31615 Windows 10
Total29327773014 1 3251123 Windows 10
201374432 1 Windows 8.1
20143881354 5512 4Windows 8.1
20151511447119 1 302559 1Windows 8.1
2016154545207 162675 Windows 8.1
201756131141 1 11611 Windows 8.1
Total406441204323 11 5272158 5Windows 8.1
20125 32 2 Windows 8
2013581718216 1 2325 4Windows 8
20143881253 5512 4Windows 8
20151461246109 1 272458 1Windows 8
20167 31 115 Windows 8
201711 Windows 8
Total25538823918 2 3533102 9Windows 8
20091531026 1Windows 7
2010641629159 1 2122 4Windows 7
2011102141898 2 4265 3Windows 7
2012444146 2322 Windows 7
2013991618246 1 3267 4Windows 7
20143661253 6512 4Windows 7
20151471152129 1 242460 1Windows 7
2016134439186 112071 Windows 7
201767715111 1 233101 Windows 7
Total7088120710248 42 54903291 17Windows 7
Total Windows1662
2009105662227 81122 4Linux
2010124673167 83014 5Linux
2011836212110 1219 1Linux
20121158342510 61911 Linux
201318910164113 115726 7Linux
20141338982110 113020 10Linux
201586556154 111017 Linux
201621715353818 123552 1Linux
2017317681642514 66723 Linux
Total Linux1369
Year# of VulnerabilitiesDoSCode ExecutionOverflowMemory CorruptionSql InjectionXSSDirectory TraversalHttp Response SplittingBypass somethingGain InformationGain PrivilegesCSRFFile Inclusion# of exploits
20098144433013 3 1457 6Mac OS X
20109756524215 33 9531 Mac OS X
2011743536299 1 882 Mac OS X
2012372120134 162 Mac OS X
2013723015134 1515 Mac OS X
201415155744320 25246 1Mac OS X
2015444225180184146 21 5361631 3Mac OS X
201621514910911496 1 64021 Mac OS X
201714290785750 1 6229 Mac OS X
Total Mac OS X1313
Year# of VulnerabilitiesDoSCode ExecutionOverflowMemory CorruptionSql InjectionXSSDirectory TraversalHttp Response SplittingBypass somethingGain InformationGain PrivilegesCSRFFile Inclusion# of exploits
2009113231 213 2
2010842 12 3
201110423 2 112 2
201210626 1 1
2013134121 453
2014181326 5
20156412 12
201666 4 12
201761 1 114
Total FreeBSD88
Year# of VulnerabilitiesDoSCode ExecutionOverflowMemory CorruptionSql InjectionXSSDirectory TraversalHttp Response SplittingBypass somethingGain InformationGain PrivilegesCSRFFile Inclusion# of exploits
20096512 1 3
20101 1
20117412
201221 1
201321 1
201484 11 21
201552 1 1
201674 2 111
2017191023 22
Total OpenBSD57
Year# of VulnerabilitiesDoSCode ExecutionOverflowMemory CorruptionSql InjectionXSSDirectory TraversalHttp Response SplittingBypass somethingGain InformationGain PrivilegesCSRFFile Inclusion# of exploits
2009788471514 2213 1Windows Server 2008
20109125371614 1 5326 5Windows Server 2008
201110518171110 4 3266 2Windows Server 2008
2012505156 3324 Windows Server 2008
20131031822247 1 2266 5Windows Server 2008
20143891253 7412 4Windows Server 2008
201515012541511 11 242360 1Windows Server 2008
2016133736176 111972 Windows Server 2008
2017771019122 1 235111 Windows Server 2008
20125 22 1 2 Windows Server 2012
2013511217173 1 2221 4Windows Server 2012
20143891153 6512 4Windows Server 2012
20151551646119 1 312660 1Windows Server 2012
2016156842197 162876 Windows Server 2012
201762141262 1 21712 Windows Server 2012
20163917122 3623 Windows Server 2016
201758171232 1 3139 Windows Server 2016
Total Windows Server1389

References


cve_linux_vs_windows.txt · Last modified: 2017/05/21 22:22
Public Domain Except where otherwise noted, content on this wiki is licensed under the following license: Public Domain