» ‘Many eyes’ miss another

The New York Times reports on “Shellshock”, the bug found in Bash after…

How long was it again?

Oh, right. 22 years.

Contacted Thursday, Jim Zemlin, the executive director of the Linux Foundation, said the initiative was contacting Mr. Ramey to see how it could help.

“I don’t think this is an open-source problem,” Mr. Zemlin said. “Software is eating the world. The bad news is software is hard and complex.”

That’s true. I also don’t think it’s just an open-source problem. But how many times do we have to find serious bugs in open-source software dating back years before the “many eyes” theory is finally disproved as an advantage?