|
|
|
|
|
|
by sqeaky
706 days ago
|
|
|
C isn't magic, plenty of people understand it and lots of these projects move quite slow. That these things CVEs on ssh are so rare shows how well this process normally works. These past couple of weeks have had 3(?) ssh vulnerabilities? We often go years with one, and not all are a result of packaging some come from upstream. Any new process needs to not just fix this problem, but also all or at least most of the problems that the existing processes fixes. |
|
|