security has not really been a concern in FOSS community (like in the proprietary software word): it's features first and then security is bolted on afterwards, which of course doesn't work..
What makes you think that the situation in the proprietary software world is in any way different?
At least in the FOSS community, projects – unlike proprietary software vendors – have nothing to gain by trying to keep security issues secret and unfixed.
Copyright © 2017, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds