[VIM] Red Hat security engineer lists sources of vulnerabilities

Steven M. Christey coley at mitre.org
Tue Mar 21 14:41:57 EST 2006


Mark Cox of Red Hat has published a blog entry that lists Red Hat's
sources for how they learned about vulnerabilities in their products:

  http://www.awe.com/mark/blog/security/200603211056.html

Note his disclaimer that "we only list the first place we found out
about an issue, and for already-public issues this may be arbitrary."
Still, it's an interesting breakdown, and it would be nice to see how
other vendors learn of issues.

- Steve


More information about the VIM mailing list