@attritionorg @virusbtn @kurtseifried in open source nothing is single vendor as per distros (outside of cms)
@kurtseifried @dakami @virusbtn @taviso it has to do with someone not understanding where CVE truly fits into 'vuln disclosure'
-
-
@attritionorg@kurtseifried@virusbtn@taviso speaking of pedantic jerk -
@dakami@kurtseifried@virusbtn@taviso you'd think so, but you aren't in the middle of this like Kurt and I are. -
@attritionorg@kurtseifried@virusbtn@taviso I have three major bugs under embargo that came to me in the last 72 hours soooo yeah -
@dakami@kurtseifried@virusbtn@taviso *shrug* sitting on a dozen+ others found that I am now responsible for disclosing. your point? -
@attritionorg@kurtseifried@virusbtn@taviso am I saying you're not in the middle of this? No. Goodbye -
@dakami@kurtseifried@virusbtn@taviso you're kinda-sorta-not-quite in the middle, compared to me, and i'm not-quite in the mid like kurt
End of conversation
New conversation -
-
-
@attritionorg@kurtseifried@virusbtn@taviso referring to article saying not all CVE's should be embargoed. Read the article -
@dakami@attritionorg@virusbtn@taviso ah sorry, "real" sec issues get a CVE so CVE is short for "real security issue"@RedHatSecurity -
@kurtseifried@dakami@virusbtn@taviso@RedHatSecurity TROLLLOOLOLOLOLOL
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.