Landon Fuller, programmer and former Apple BSD Technology Group engineer extraordinaire, has offered to try and provide fixes for the exploits that appear during this asinine Month of Apple Bugs
. Landon has already posted workarounds
for the QuickTime vulnerability, and he links a change the VLC team has already made to their codebase (which is likely to be rolled out soon).
I join many others in thanking Landon for his work, but I still wish he didn't have to do it. Why should a former Apple engineer use his free time to chase after publicized exploits, when Apple themselves (and any 3rd parties) should be the ones to fix these problems at their core?Thanks Bill I