Debian: 75 minutes to close a security bug.
"At August 8th, 11:04am (GMT, or Greenwich Time), Debian  developer
Erich Schubert reported about a bug  in Serendipity .
According to his blog, it took him 10 minutes to close it, and he
reported it to the guys over at Serendipity.
And at 12:09pm (GMT), another Debian developer named Thijs Kinkhorst had
uploaded a corrected version  from upstream to Debian unstable, and
he already found out that Sarge and Etch were not affected.
75 minutes - wow.
You guys rock.
As does free software in general.
Update: it’s 21:30 (or 9:30pm) GMT now, and now I also see it in
Is Free (Libre) Open Source Software cool, or is it cool?
A turnaround time of some 10 hours only, from discovering to fixing to
reporting to an improved version ready for download, plus a security
warning for all those who care.
Now that is what I call professional.
We are standing on the shoulders of giants."
Wolfgang Lonien 
Andre Felipe Machado