What is this?

The CVE tracker is a manual way for maintainers to keep track of the patch status of CVEs for the kernels used in official devices.

What's a CVE?

Common Vulnerabilities and Exposures. These are security holes which could be used by an attacker to get access to your data. Due to other security measures in the Android OS like SELinux, most of these vulnerabilities can't be exploited and are just theoretical.

The kernel for my device is only at x%, why is it so insecure?

Please note that the tracker needs to be manually updated by each device maintainer and it does not necessarily represent the real patch status of the kernel.