Mozilla developers, a criticism of this analysis, saying it will not help solve the security hole. Klocwork organization K7 through the use of AdamHarrsion analysis software, multiple versions of Firefox had a safety test, including the latest version 1.5.0.6 and found about 611 missing and 71 limit vulnerabilities.
When the memory was allocated or re-analysis, this will lead to a lot of loopholes in the code to detect invalid. Memory management vulnerabilities arising from the second to reach the 141 loophole. Implementation of the code can not detect the path often give rise to potential problems.
At present, Firefox developers have received the results of safety tests. Harrsion said: "Only a profound professional knowledge and understanding of the background of the Firefox some people can really understand the vulnerability of these hazards."
As the opera or Microsoft did not provide copyright code, the same browser comparison tests, not on Firefox comparative analysis.
A former Mozilla project developers AlecFleet said that the use of code analysis software is good, but the company Klocwork's conclusions are misleading and not entirely the possibility. Harrsion However, the defense said, although analysis is carried out automatically, but the software than the traditional analysis of the software is more complex.
Loading...
