Language Selection

English French German Italian Portuguese Spanish

Red Hat and Firefox more buggy than Microsoft?

Filed under
Security

Secunia has found that the number of security bugs in the open source Red Hat Linux operating system and Firefox browsers far outstripped comparable products from Microsoft last year.

Out of the operating systems monitored by Secunia - Windows (98 and onwards), Mac OS X, HP-UX 10.x and 11.x, Solaris 8, 9, and 10 and Red Hat (excluding Fedora) - Red Hat was found to have by far the most vulnerabilities, at 633, with 99 percent found in third-party components. (Linux distributions are generally composed mostly of third-party software, which is integrated by the distributor.)

Red Hat has taken issue with the figures, claiming the accurate number should be 404 vulnerabilities for last year.

Windows had only 123 bugs reported, but 96 percent of those were found in the operating system itself.

More Here




Red Hat bugs - another open source PR hit?

Red Hat and Firefox are reported to have more bugs in them than their Microsoft equivalents. But the truth is, as always, more complex. And once again, security is shown as a key point where rival approaches are bidding to distinguish themselves.

Secunia reported the discrpancy, stating in its 2007 Report that Red Hat had 633 flaws, compared with Windows' 123. However, Red Hat's Mark Cox quickly pointed out in a blog that a) the number was wrong, Cool it counted flaws in all the third party products associated with Red Hat's OS, and worst of all c) it counted several bugs six times, since it added up fixes made for the same bug, on multiple Red Hat products.

The interesting thing is why Secunia would push this story at all.

More Here

Firefox is fixed faster

Counting security vulnerabilities to compare the security of different software projects is flawed. It is only a useful metric if you are comparing a project to itself over time. I’ve discussed this topic here and here. It’s even more ridiculous to try and compare an open source bug count to a closed source project because you can see all the bugs in an open source project. You can only see the publicly found security issues for a closed source product, like Internet Explorer.

So what is interesting in the Techworld article is the measures of real risk to users:

More Here

Good additions there

When I saw the headline I was going to post these rebuttal articles too, but you beat me to it. Nice review of MEPIS BTW...

Comment viewing options

Select your preferred way to display the comments and click "Save settings" to activate your changes.

More in Tux Machines

The Machine with Open Source Carbon OS is the Next Big Thing – if HP can deliver

HP has recently been facing some serious difficulties and has opted to betting all its resources on the new PC called ‘The Machine’. Probably the most intriguing thing about the machine is that it will rewrite basic computing on a very fundamental level. While the topic has been covered extensively, I realized we haven’t actually touched it here and thought it was about time. Read more

YEAR of the PENGUIN: A Linux mobile in 2015?

It's nearly impossible to sum up an entire year of developments in something as large and nebulous as the world of desktop Linux, especially in a year like this one which has seen some the best releases that projects like Mint, Fedora and openSUSE have put out to date. At the same time the distro that's closest to being a household name, Ubuntu, has been nearly silent since 14.04 arrived in April. To paraphrase author Charles Dickens, the past year of Linux releases has been both the best of times and the worst of times. At the very moment that Linux desktops seem to be reaching new levels of sophistication, polish and "just works" ease-of-use, the entire future of the desktop computer (by which I also mean laptop) feels in doubt. Read more

Jolla's Sailfish OS Update 10 Is Now Available

The tenth update to Jolla's Sailfish mobile operating system is now available. This update is version 1.1.1.26 and is codenamed Vaarainjärvi. Read more

Forget Google's robot cars, now it's on to ANDROID cars

Google is planning a big push into in-car infotainment systems with an upcoming version of Android, sources claim. "Android M" – the version to come after the current Android 5.0 "Lollipop" – will be available in a formulation designed specifically to run cars' built-in screens, Reuters reports, citing anonymous insiders with knowledge of the plan. Google made its first advances toward the automotive world at its I/O developer conference earlier this year, when it unveiled its Android Auto software. The first Android Auto–compatible cars are expected to arrive early next year. Read more