DHS Bug Hunt Returns Mixed Reaction

Filed under
Security

The results of a Homeland Security Department-funded bug hunt spanning 40 popular open-source programs has thus far met ambivalence from the open-source community. While many projects are using the results to improve their software, others are bemoaning the high number of false positives.

In January, DHS' Science and Technology Directorate awarded a team comprising Coverity Inc. of San Francisco, Stanford University and Symantec Corp. of Cupertino, Calif., a three-year, $1.2 million contract to find heretofore undiscovered vulnerabilities in widely used open-source programs, such as the Linux kernel and the Apache Web server.

Full Story.