Redhat fixes their 1,000th CVE

We now have several years worth of solid CVE / vuln data that has accrued (both for us and our competitors) and some folks like us are improving (by needing to fix fewer security vulns year over year) and others . . . not so much. :)
https://blogs.technet.com/security/archive/2007/10/16/red-hat-enterprise-linux-4-passes-1000-vulnerabilities.aspx