3.5 Addendum
Note
Wednesday, December 17, 2008
Since the vulnerability was fixed and a patch for Solaris is available, I released a detailed security advisory on my website today.[36] The bug was assigned CVE-2008-568. Sun took 471 days to provide a fixed version of its operating system (see Figure 3-7). That’s an unbelievably long time!
Figure 3-7. Timeline from notification of the bug to the release of the fixed operating system
[23] The source code of OpenSolaris can be downloaded at http://dlc.sun.com/osol/on/downloads/.
[25] For more information ...
Get A Bug Hunter's Diary now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.