[VIM] Red Hat security engineer lists sources of vulnerabilities

Steven M. Christey coley at mitre.org
Tue Mar 21 14:41:57 EST 2006

Mark Cox of Red Hat has published a blog entry that lists Red Hat's
sources for how they learned about vulnerabilities in their products:


Note his disclaimer that "we only list the first place we found out
about an issue, and for already-public issues this may be arbitrary."
Still, it's an interesting breakdown, and it would be nice to see how
other vendors learn of issues.

- Steve

More information about the VIM mailing list