>> Google notified OpenSSL about the bug on April 1 in the US – at least 11 days after discovering it.
"OK, maybe it was caught up in legal. Suits at large corporations can take a while."
>> Google would not reveal the exact date it found the bug, but logs show it created a patch on March 21,
"On second thought, if the geeks on the ground had the authority to patch and roll to production, then why the finger to the Open Source community, Google?"