Comment by fulafel

Because there are always more bugs to be found in unsound software.

This finding is not about this single bug, it's just that someone bothered to scrape the surface.

(Note that 99% of the effort went into crafting the demo exploit once the vulnerability was found, which is basically wasted effort in the context of eliminating vulnerabilities - the vulnerability finding was easy)