[Secure-testing-team] [Secure-testing-commits] r13457 - data/CVE

Michael Gilbert michael.s.gilbert at gmail.com
Sat Dec 5 19:11:05 UTC 2009


On Sat,  5 Dec 2009 18:24:26 +0000 Giuseppe Iuculano wrote:
> Author: derevko-guest
> Date: 2009-12-05 18:24:24 +0000 (Sat, 05 Dec 2009)
> New Revision: 13457
> 
> Modified:
>    data/CVE/list
> Log:
> webkit issue triage

this triage is great news!  i was starting to think that webkit was
going to have to become considered unsupportable since there has
been no progress for so long.  

does this mean that you now have access to the apple's "private" info
for their *publicly* disclosed webkit issues (i still don't see any
info/patches related to these issues on any of the cve pages or anywhere
else that's obvious)? if so, does that mean that you are to be primarily
responsible for webkit security?  if so, that is good news given the
circumstances; of course, it would be much more ideal for apple to
actually disclose information about their "disclosed" issues.

thanks for finding a way to make progress!

mike



More information about the Secure-testing-team mailing list