ABSTRACT
Historically, many organizations tended to place too much trust on the vendors that release patches or on the source from which they downloaded those patches. Due to a high number of patches that were not tested by a vendor prior to public release and patch download sites from nonvendors posting altered patches, most eventually learned their lesson not to trust these sources to produce an error-free patch the ›rst time.
