Bernard Shaw wrote "Of government, ‘that foolish gaggle shop’, he says: you will do what pays us. You will make war when it suits us, and keep peace when it doesn’t. You will find out that trade requires certain measures when we have decided on those measures. When I want anything to keep my dividends up, you will discover that my want is a national need. When other people want something to keep my dividends down, you will call out the police and military. And in return you shall have the support and applause of my newspapers, and the delight of imagining that you are a great statesman"
Meanwhile China continues to invest is loss incurring businesses and technologies to under-cut and eradicate the competition.
1. I do not understand the issue (read, I am just copying code of the interwebs and have no clue about my job).
2. I understand the issue but we are under the gun to release the product.
3. I understand the issue but the vulnerability is theoretical (read, I don't understand anything about large scale production infrastructure)
Bottom-line: Unless a security big breaks functionality, a dev doesn't care.
Sorry to devs who care but after a decade of trying devs to release secure code, my opinion maybe a bit biased.