O'Reilly logo

A Bug Hunter's Diary by Tobias Klein

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

3.5 Addendum

Note

Wednesday, December 17, 2008

Since the vulnerability was fixed and a patch for Solaris is available, I released a detailed security advisory on my website today.[36] The bug was assigned CVE-2008-568. Sun took 471 days to provide a fixed version of its operating system (see Figure 3-7). That’s an unbelievably long time!

Timeline from notification of the bug to the release of the fixed operating system

Figure 3-7. Timeline from notification of the bug to the release of the fixed operating system

Notes

[23]

[24]

[25]

[26]

[27]

[28]

[29]

[30]

[31]

[32]

[33]

[34]

[35]

[36]

[23] The source code of OpenSolaris can be downloaded at http://dlc.sun.com/osol/on/downloads/.

[25] For more information ...

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, interactive tutorials, and more.

Start Free Trial

No credit card required