|
[20050224]
|
Finding NetBSD Kernel bugs with Coverity
From the website,
``Coverity automates the detection of software defects and security vulnerabilities for complex software at compile time. With Coverity, development teams identify critical software problems that could have a catastrophic impact.''
Ted Unangst from Coverity has run the tool on the NetBSD kernel source,
and has discovered
a number of problems that I find quite impressing, including
using freed ressources, ressource leaks and *gosh* an in-kernel
buffer overflow.
[Tags: coverity, software]
|
|
