Wait; he was pissed that F5 wanted to treat something as a security issue where he “and the developers” (citation needed) wanted to treat it as a normal bug. So, the “evil corporate overlords” wanted to fix something via hotfix-release, while he wanted the fix to be shipped later with a regular release?
So the company wanted — just so I get this straight — to fix a thing sooner, and therefore they are evil. They wanted to provide something that benefited users sooner and… how exactly does that make them worthy of scorn? guys, help me out, what am I missing here?
The security issue was found in a development build, not a production release. There were no users to benefit from the CVE, because none were affected. If there were exceptions that were using development builds, it on them.
Wait; he was pissed that F5 wanted to treat something as a security issue where he “and the developers” (citation needed) wanted to treat it as a normal bug. So, the “evil corporate overlords” wanted to fix something via hotfix-release, while he wanted the fix to be shipped later with a regular release?
So the company wanted — just so I get this straight — to fix a thing sooner, and therefore they are evil. They wanted to provide something that benefited users sooner and… how exactly does that make them worthy of scorn? guys, help me out, what am I missing here?
The security issue was found in a development build, not a production release. There were no users to benefit from the CVE, because none were affected. If there were exceptions that were using development builds, it on them.