Linus Torvalds says Linux security list is becoming ‘unmanageable’ due to AI bug reports

The Verge / 5/18/2026

💬 OpinionDeveloper Stack & InfrastructureSignals & Early TrendsIndustry & Market Moves

共有:

Key Points

Linus Torvalds said the Linux security mailing list is becoming “unmanageable” because AI-assisted bug reports are flooding in and heavily duplicating findings.
He argued that different people using the same AI tools are often reporting the same underlying issues, creating large volumes of repeat entries.
Torvalds noted that this doesn’t necessarily mean AI-driven bug hunting is bad—he pointed to serious cases like the “Copy Fail” exploit that affected many Linux distros and was detected with AI help.
He emphasized that if an AI tool helps someone find a bug, it is likely others will discover and report it as well, implying maintainers may need better triage/deduplication workflows.
The comments were made in his latest “state of the kernel” post, as reported by outlets including The Register.

Linux founder Linus Torvalds said in his most recent state of the kernel post that "the continued flood of AI reports has basically made the security list almost entirely unmanageable, with enormous duplication due to different people finding the same things with the same tools," as The Register reports.

That probably doesn't apply to stuff like the "Copy Fail" exploit, which was detected with help from AI and affected nearly every Linux distro.

"The documentation may be a bit less blunt than I am," Torvalds said. "So just to make it really clear: if you found a bug using AI tools, the chances are somebody else found it too." He called t …

Read the full story at The Verge.