On 21 July 2011 16:05, Les Mikesell <lesmikesell at gmail.com> wrote: > The important thing to know is when published CVE's are fixed upstream Sorry Les but you are going OT. With regard to what you have just said, we all have the ability to monitor what the "Upstream Vendor" does. Alan.