Free Software security vulnerabilities: Heartbleed and other case studies?

• Previous message (by thread): Free Software security vulnerabilities: Heartbleed and other case studies?
• Next message (by thread): Free Software security vulnerabilities: Heartbleed and other case studies?
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Thank you Bastien, this is interesting and helpful.

Does anyone has interesting articles about recent vulnerabilities
discovered in free software?

Best,
Hugo

↪ Bastien Guerry / juillet 26, 2017 15:50:
> Hi Hugo,
> 
> Hugo Roy <hugo at fsfe.org> writes:
> 
>> Any case studies on how the world dealt to react quickly and update
>> systems in reponse to Heartbleed for instance?
> 
> I remember blackduck had some reports comparing FLOSS/non-FLOSS with
> respect to their security, I found this, but I’m sure there are more
> detailed documents:
> 
> https://info.blackducksoftware.com/rs/872-OLS-526/images/OSSAReportFINAL.pdf
> 
> Also, a bit older, but with more data:
> http://go.coverity.com/rs/157-LQW-289/images/2014-Coverity-Scan-Report.pdf
> 
> I’m not a specialist at all, and all these sources must be read with
> a grain of salt, because authors are often not neutral.
> 
> HTH,
> 
> -- 
>  Bastien
> 
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 833 bytes
Desc: not available
URL: <http://lists.fsfe.org/pipermail/discussion/attachments/20170726/71416db2/attachment.sig>

• Previous message (by thread): Free Software security vulnerabilities: Heartbleed and other case studies?
• Next message (by thread): Free Software security vulnerabilities: Heartbleed and other case studies?
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]