Miscellaneous > Applications
Bad FireFox Hole
piratePenguin:
--- Quote from: muzzy ---Yea, power of free software. Just like "fixing" bugs so that same function gets rewritten 3 times, each patch not really fixing the problem but merely protecting against the specific exploit, when it's a critical vulnerability such as remote crash bug in linux kernel related to packet fragmentation. Microsoft sometimes does that too, but don't go touting about power of free software when even critical bugs can take damned long time to fix, and they STILL haven't patched several remote crash bugs in FireFox. Hell, there are heaps of open bugs which have been around for years and known by everyone. Nobody's just bothering to fix them. Power of free software my ass.
--- End quote ---
Holy shit.
The damn thing is FIXED! Stop crying, just 'cause the Firefox dev's are faster at fixing security vunerabilities than MS.
As soon as that vunerability was noticed and revealed, hundreds (I'd say) of programmers looked through some of the Firefox code to fix it. They did. Fast.
And don't tell me "oh well the quality of these programmers skills are questionable", I know it is. As are the MS programmers. We all know that Firefox is better than Internet Explorer, it doesn't take a genius to figure that out. In my mind, it's safe enough to assume that the Firefox dev's are better than the Internet Explorer dev's.
skyman8081:
Are you actually implying that the availibility of source code makes a peice of software inherently better?
In practince, yes, many time OSS packages are in fact better than their proprietary counterparts. However, this does not mean that a peice of software is somehow "better", ONLY because it is open source. This would mean that the GPL licensed KDE/Qt is magically better than when it is released under a commercial license.
piratePenguin:
--- Quote from: skyman8081 ---Are you actually implying that the availibility of source code makes a peice of software inherently better?
--- End quote ---
No I am not. I'm saying that:
--- Quote from: what_I_said ---As soon as that vunerability was noticed and revealed, hundreds (I'd say) of programmers looked through some of the Firefox code to fix it. They did. Fast.
--- End quote ---
EDIT: And the availabilty of the source code probably and more than likely speeded up the fixing process, at least on this occasion.
EDIT: Please read my other post again.
muzzy:
--- Quote from: piratePenguin ---The damn thing is FIXED! Stop crying, just 'cause the Firefox dev's are faster at fixing security vunerabilities than MS.
As soon as that vunerability was noticed and revealed, hundreds (I'd say) of programmers looked through some of the Firefox code to fix it. They did. Fast.
--- End quote ---
If you only look at the incidents that you choose, you won't get very interesting view. As an example to counter your silly little view, I present you a bug that's been reported over two years ago, is marked critical, crashes the browser, and testcase is available:
https://bugzilla.mozilla.org/show_bug.cgi?id=202765
See the bug live in here, tested against latest firefox:
http://muzzy.net/ffcrash/crash.xml
So, where are the "hundreds" of programmers now? Oh, it's not an issue because it hasn't been publicized in any magazine?
Aloone_Jonez:
That's not that critical in my opinion. So what the browser crashes, it's more of an inconvenience than anything, it's not like it crashes the whole system or allows a hacker to compromise the system or allow some executable code to run.
I do take your point though, this should've been fixed years ago.
Navigation
[0] Message Index
[#] Next page
[*] Previous page
Go to full version