I wonder if this increases the value of patch diffing results. Because P0 will not disclose what the bugs are for a long time which automatically makes patch diffing more attractive
https://twitter.com/i0n1c/status/1214621661099646989 …
-
-
Also I suspect quite a few vendors will still want to align disclosure around security bulletins, and that's still an option.
-
The real deal here is to improve patching, which means for OS/system devs to find a way to make it less painful and for end customers to buy into it. Writing the patch is the trivial part here. Testing and especially deployment are the bits that matter.
- 1 more reply
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.
