Software bugs aren’t an open source problem, they are a software management problem. Open source software is still software and vulnerabilities are expected. Unlike a filesystem bug or a kernel panic, they cause no pain until they strike.
The history of the phrase “Annus Horribilis” is interesting. It’s actually a reference to John Dryden’s 1667 poem “Annus Mirabilis,” which is about the Great Fire of London in 1666. Dryden says that for all the suffering, 1666 was a ???Year of Miracles??? because the fire could have been much, much worse. So it is with open source in 2014. We can see how effective the open source community has been in responding to these vulnerabilities, without diminishing the seriousness of the flaws themselves.