[VIM] Red Hat security engineer lists sources of vulnerabilities
Steven M. Christey
coley at mitre.org
Tue Mar 21 14:41:57 EST 2006
Mark Cox of Red Hat has published a blog entry that lists Red Hat's
sources for how they learned about vulnerabilities in their products:
Note his disclaimer that "we only list the first place we found out
about an issue, and for already-public issues this may be arbitrary."
Still, it's an interesting breakdown, and it would be nice to see how
other vendors learn of issues.
More information about the VIM