The lamest vendor response award went to Systemd supremo Lennart Poettering for his
controversial, and perhaps questionable, handling of the following bugs in everyone's
favorite init replacement.
Awarded to the vendor who mis-handled a security vulnerability most spectacularly.
SystemD bugs 5998, 6225, 6214, 5144, 6237
Credit: Lennart Poettering
Where you are dereferencing null pointers, or writing out of bounds, or not supporting
fully qualified domain names, or giving root privileges to any user whose name begins with
a number, there's no chance that the CVE number will referenced in either the change
log or the commit message. But CVEs aren't really our currency any more, and only the
lamest of vendors gets a Pwnie!