Good example: Chromium blob found by Debian (via LWN)

Bernhard Reiter bernhard at fsfe.org
Thu Jun 18 08:30:16 UTC 2015


We all know that the review that is actually happening
is really important for raising the quality of software.
Free Software always enables third party peer review,
which makes it an important precondition for good security.

Here is an example where the peer review of Debian
found an issue that - most likely - slipped the Google devs.

  Chromium suddenly starts downloading a binary blob
  http://lwn.net/SubscriberLink/648392/d7e8ee05cd5977e5/

You'll get the relevant links from the above article and its comments.

Best,
Bernhard

-- 
FSFE -- Founding Member of the GA            blogs.fsfe.org/bernhard
Support our work for Free Software:     https://fsfe.org/support/?ber
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 473 bytes
Desc: This is a digitally signed message part.
URL: <http://lists.fsfe.org/pipermail/discussion/attachments/20150618/e1d04135/attachment.sig>


More information about the Discussion mailing list