Posted Apr 29, 2009 6:16 UTC (Wed) by khim
In reply to: Is this a joke?
Parent article: Firefox 3.0.10 released
If a project pushes out updates automatically then all the
security sites ignore any security advisories regarding that software, and
news sites like LWN.net decline to report on them. Is that *really* the
case that you want to argue?
No. Security sites don't ignore them, only news sites do. If you visit
database you'll find out that WebKit is vulnerable, Safari is
too and Chrome is far from ideal - but they don't issue
numbered releases to be downloaded from site so LWN does not issue articles
on subject too. Yes, 1/3 of bugs (159 for Safari vs 455 for Firefox) is
good achievment, but is it enough to say "WebKit doesn't seem to have this
You can not do apples-to-apples comparison between Gecko and
WebKit: for Gecko there are just 5 CVE and for WebKit 27, but I find it
hard to believe that out of 455 Firefox's vulnerabilities only 5 affect
Gecko and some 450 are in different subsystems...
The lengths to which some die-hard Firefox fans will go... the
logical contortions they are willing to accept... to "prove" that the
endless stream of security vulnerabilities in Firefox is really a good
thing is beyond just worrisome. It's out and out scary.
Yes, it's really scary. Only Firefox-haters are worse...
to post comments)