Tuesday, September 05, 2006

g2zero archive: Examining defects in the Firefox code base

Check the full post for details. 

Using Klocwork’s K7 static analysis tool, I examined the large and complicated code base of the popular open source browser, Firefox. Overall it is clear that Firefox is a very well written and high quality piece of software. Several builds were performed on the code, culminating in the final analysis of version 1.5.0.6. The analysis resulted in 611 defects and 71 potential security vulnerabilities. The Firefox team has been given the analysis results, and they will determine if or how they will deal with the issues.

Source: g2zero archive: Examining defects in the Firefox code base

No comments: