Matthew et al,
There are three key issues.
1. How do security vulnerabilities get disclosed to Zend. Especially
serious ones that a vendor should know about before the public.
2. What will Zend do to ensure the bug is verified, fixed and patched.
3. How will Zend distribute those patches.
Pos
-- Kevin McArthur <[EMAIL PROTECTED]> wrote
(on Tuesday, 10 June 2008, 12:31 PM -0700):
> No one's blaming anyone for the code, it's what the response is, and
> will be. Bugs will happen... but will backports? If you search the lists
> you'll find numerous attempts to get a security policy disc