Coverity Reveals Common Open-source Code Flaws
News Coverity, a commercial code-analysis company spun out of Stanford University, has been running its Scan project with Department of Homeland Security funding since 2006. On Tuesday, Coverity released its Open Source Report, which gives results of...
[May 20, 2008, 17:35]
Open Source Coders' Speed Astounds Coverity
News More than 900 flaws were repaired in the two weeks after Coverity, which makes tools to analyse source code, announced the results of its first scan of 32 open source projects. As a result, some of the software is now entirely bug free, Coverity...
[April 5, 2006, 9:45]
Open-source Security Moves To Next Step
News Source code analysis expert Coverity has found and helped fix more than 7,500 security flaws in open-source software, and published a list of the 11 open-source projects working fastest to sort them out.
[January 11, 2008, 14:19]
Bug Analysis Of The Linux Kernel
White Papers Coverity has combined two years of analysis work carried out in a commercial setting at Coverity, with four years of academic research conducted at the Computer Science Laboratory at Stanford University using an early prototype of Coverity’s...
[January 14, 2005, 2:00]
Linux Kernel Bugs Squished
News In December, Coverity looked at version 2.6.9 of the Linux kernel, the heart of the open source operating system, and found six critical defects in the core file system and networking code. In July, the code analysis company scanned the latest...
[August 4, 2005, 9:00]
MySQL Gets Gold Star On Bug Test
News A source-code analysis of MySQL, a popular open source program at the heart of many Web sites, revealed few bugs compared with the number found in commercial code, testing company Coverity said Friday.
[February 7, 2005, 8:50]
Linux 'better Than Proprietary Software'
News The conclusion is the result of a four-year research project conducted by code-analysis company Coverity, which plans to release its report on Tuesday. Linux is a very good system in terms of bug density," said Seth Hallem, CEO of Coverity, a San...
[December 14, 2004, 10:30]
US Government To Fund Open Source Bug Hunt
News By applying the Coverity tools to both open source and proprietary software, Coverity is getting feedback from two very different worlds of software development. Through its Science and Technology Directorate, the department has given $1.24m (£702...
[January 11, 2006, 9:05]
Open-source Bug-hunting Effort To Grow
News This allows open-source developers to find and resolve defects introduced into the project," David Maxwell, open-source strategist for Coverity, said in a statement. Coverity makes source-code analysis tools and shares the DHS contract with...
[March 28, 2007, 9:01]
Open Source Consortium Wins EC Funding
News However, this has been done before through initiatives like Coverity and it would be nice not to reinvent the wheel," said Laurent Lachal, open source research director at Ovum. Coverity is an American company that is being funded by the US...
[October 23, 2006, 17:10]
Fixing The Bug Fixers
Leader But however many bugs are caught, there is one big flaw in the concept: a large chunk of the funding is going directly to two proprietary companies — Coverity and Symantec — which own the closed-source bug-hunting tools.
[March 28, 2007, 18:13]
Meeting The Software Development Challenge With Static Source Code Analysis
White Papers This white paper highlights key business and technology issues facing large software development teams and discusses how Coverity's groundbreaking static source code analysis technology enables them to detect and fix critical defects and security...
[January 31, 2008, 13:47]
Static Vs. Dynamic Source Code Analysis: Finding The Right 'Bug Spray'
White Papers In this on-demand Webcast, Coverity CTO Ben Chelf reviews the relative merits of static and dynamic source code analysis tools, and the types of defects which can be found at compile time vs.at run time.
[January 31, 2008, 13:47]
Open Source Bug Hunters Make Progress
Blog Code-checking maestro Coverity, working on behalf of the US government, has been checking open source code for security issues - we've covered it here. It's a story that probably got spun many ways, but the bottom line is good news for open source.
[January 10, 2008, 14:30]
Academics Praise Open Source Development
News Earlier this month testing company Coverity said that open source database MySQL had fewer bugs than would be expected for a comparably sized piece of commercial software. The quality of code developed by open source project is as good, if not...
[February 16, 2005, 12:15]
Red Hat Bugs - Another Open Source PR Hit?
Blog It could just mean that there is more publicity for known bugs in the open source world (as we saw recently, when code-checker Coverity announced it had found around 8000 bugs in open source projects, I commented here that this was actually good...
[January 17, 2008, 16:12]
Open Source Rival Attacks 'terrible' Linux
News A study in December 2004 by code analysis company Coverity found that the Linux kernel had only 985 bugs in 5.7 million lines of code, significantly fewer than the 5000 bugs that would be expected in a commercial program of similar size.
[June 17, 2005, 13:00]
HP Rallies Developers Around Open-source Tools
News HP is contributing white papers, assessment pools, supportability tools and other resources to the latter site, which is backed by partners such as Novell and Coverity. HP has called on developers to pitch in and help improve the open-source...
[January 29, 2008, 16:29]
Software Bug Dictionary Aims To Cut Confusion
News These are tools such as those sold by Fortify Software, Coverity and Klocwork that vet computer code for bugs. A US Department of Homeland Security-sponsored plan designed to create a standard dictionary for security bugs is taking shape, its...
[March 2, 2007, 8:27]
Show Blog Day 2: IBM Rational Software Developer Conference 2008
Blog I’ve been too Big Blue’d out to focus much on it to be honest, but one company that clearly has had to spread themselves over both shows is Coverity. IBM really did bring out all the news on day one of this show, so this morning a little space...
[June 3, 2008, 23:47]
