code audit Archives - Help Net Security

code audit

Critical RCE vulnerabilities found in git (CVE-2022-41903, CVE-2022-23251)

January 19, 2023

A source code audit has revealed two critical vulnerabilities affecting git, the popular distributed version control system for collaborative software development. The latest …

A 10-point plan to improve the security of open source software

May 13, 2022

The Linux Foundation and the Open Source Software Security Foundation, with input provided by executives from 37 companies and many U.S. government leaders, delivered a …

OpenSSF announces Alpha-Omega Project to improve global OSS supply chain security

February 2, 2022

Following a meeting with government and industry leaders at the White House, OpenSSF announced the Alpha-Omega Project to improve the security posture of open source software …

21 vulnerabilities found in Exim, update your instances ASAP!

May 5, 2021

A code audit of Exim, a widely used mail transfer agent, has revealed 21 previously unknown vulnerabilities, some of which can be chained together to achieve unauthenticated …

A Boxcryptor audit shows no critical weaknesses in the software

July 1, 2020

More and more companies, self-employed and private customers are using Boxcryptor to protect sensitive data – primarily in the cloud. Boxcryptor ensures that nobody but …

Mozilla will fund code audits for open source software

June 10, 2016

The Mozilla Foundation has set up the Secure Open Source (SOS) Fund, whose aim is to help open source software projects get rid their code of vulnerabilities. “The Fund …

Tech giants back initiative for funding crucial open source projects

April 24, 2014

The nonprofit Linux Foundation has announced the Core Infrastructure Initiative, a multi-million dollar project aimed to fund open source projects critical for the global …

TrueCrypt to go through a crowdfunded, public security audit

November 6, 2013

After all the revelations about NSA’s spying efforts, and especially after the disclosure of details about its Bullrun program aimed at subverting encryption standards …

code audit

Critical RCE vulnerabilities found in git (CVE-2022-41903, CVE-2022-23251)

A 10-point plan to improve the security of open source software

OpenSSF announces Alpha-Omega Project to improve global OSS supply chain security

21 vulnerabilities found in Exim, update your instances ASAP!

A Boxcryptor audit shows no critical weaknesses in the software

Mozilla will fund code audits for open source software

Tech giants back initiative for funding crucial open source projects

TrueCrypt to go through a crowdfunded, public security audit

Don't miss

Google triples reward for Chrome full chain exploits

MOVEit Transfer zero-day attacks: The latest info

Qakbot: The trojan that just won’t go away

How defense contractors can move from cybersecurity to cyber resilience

Introducing the book: Cybersecurity First Principles