Gunther,

The bugs I am referring to are not necessarily security exploits, but are mostly pinned-down functionality related issues.

Occasionally, I end-up spending an ungodly amount of time fighting issues that are undocumented bugs.

When contacting TAC with my findings, sometimes long and arduous verification and replication of the issues takes place.

 When the findings are confirmed to be a bug with no existing SK, and you are told that it will be remedied in the next version or if it results in CP pulling their AMI from AWS from instance, I suppose it qualifies for the bounty.

I do not seek those on purpose, but am stumbling on them frequently enough in the course of my normal work.

When it is costing me in terms of non-billable time, it bugs me (pun intended).

they are not bugs , just missing features mate (sorry for that)

From Wikipedia: "A software bug is an error, flaw, failure or fault in a computer program or system that causes it to produce an incorrect or unexpected result, or to behave in unintended ways."

Quoting Ilene Burnstein from the book Practical Software Testing (recommended) who parts from the definition in the "IEEE Standards Collection for Software Engineering" (1994) and "IEEE Standard Glossary of Software Engineering Terminology" (standard 610.12, 1990):

A fault (defect) is introduced into the software as the result of an error. It is an anomaly in the software that may cause it to behave incorrectly, and not according to its specification.

Faults or defects are sometimes called “bugs.” Use of the latter term trivializes the impact faults have on software quality. Use of the term “defect” is also associated with software artifacts such as requirements and design documents. Defects occurring in these artifacts are also caused by errors and are usually detected in the review process.

So sorry, those are most assuredly bugs