On Fri, 22 Jun 2007 01:04:09 +0100, Roy Schestowitz
<newsgroups@xxxxxxxxxxxxxxx> wrote:
>Skeletons in Microsoft?s Patch Day closet
>
>,----[ Quote ]
>| This is the first time I?ve seen Microsoft prominently admit to silently
>| fixing vulnerabilities in its bulletins ? a controversial practice that
>| effectively reduces the number of publicly documented bug fixes (for those
>| keeping count) and affects patch management/deployment decisions.
>`----
>
>http://blogs.zdnet.com/security/?p=316
>
>Okay, so it's _confirmed_ now.
Yeah, _confirmed_ because a blog says so.... you fool.
Beside that, say they fix a bug and, in the process of doing so, tidy
up some code and fix a "nearby" bug. What should they do? Release
*TWO* patches just to keep you happy?
The fact is OSS software is bug ridden and it makes you sick.
|
|
