User: Password:
Subscribe / Log in / New account's road to recovery's road to recovery

Posted Oct 6, 2011 23:24 UTC (Thu) by fuhchee (guest, #40059)
In reply to:'s road to recovery by dlang
Parent article:'s road to recovery

"Analysing the fix to tell if there are security implications of the fix is a separate step that requires a very different mindset than just fixing the problem in the first place"

If truly this is beyond the talented engineers, perhaps they could familiarize themselves with the CWE labeling system [1], which merely classifies the bug being fixed, and does not require the different mindset skill of actually exploiting the problem.


(Log in to post comments)

Copyright © 2017, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds