The biter bit.
So, if you don't respond quickly enough to satisfy a third party that you are taking action on a bug, the details get released. No negotiation.
Sound familiar, Google?
Security Explorations hacker Adam Gowdiak says three partial Java sandbox security holes still exist in Google App Engine. Gowdiak says the problems stem from buggy implementations and lax security checks that mean evildoers could gain access to the Google cloud's Java environment. He dropped exploitation code after the ad …
People still write stuff in Java?! Jeeez. Horribly insecure mess since day one, and for most uses outperformed by alternatives like .Net.
Ah, yes, from that famous software company that sells a bloated, horribly-broken consumer-grade OS to millions of suckers, one that repeatedly warns said suckers when they haven't installed someone else's software product that attempts to mitigate - not cure - the horribly-broken stuff?
Great, I will have some of that... from where can I download a version for my well-written Open Source multi-user OS?
Hahahahaahahahaahahahaahahahaahahahaahahahaahahaaahahaha...!