...do not cripple your server with slowdown code. RedHat updates include backported security patches for older versions of their distributed software. From the RedHat wiki: "Red Hat does not update the kernel version, but instead backports new features to the same kernel version with which a particular version of RHEL has been released... Consequently, RHEL may use a Linux kernel with a dated version number, yet the kernel is up-to-date regarding not only security fixes, but also certain features."
The Android ecosystem desperately needs RedHat's model for security patches. The FTC should mandate GPL and CentOS updates for all future Android versions. This would have the side benefit of opening up a great deal of the OEM code as well.