|
|
|
|
|
|
by staticassertion
65 days ago
|
|
|
> The author of iTerm2 initially didn’t consider it severe enough to warrant an immediate release, but they now seem to have reconsidered. It's funny that we still have the same conversation about disclosure timelines. 18 days is plenty of time, the commit log is out there, etc. The whole "responsible disclosure" thing is in response to people just publishing 0days, which itself was a response to vendors threatening researchers when vulns were directly reported. |
|
|