Mastodon Feed
Boosted by jsonstein@masto.deoan.org ("Jeff Sonstein"):
bagder ("daniel:// stenberg://") wrote:
Including the two new #curl CVEs, the share of all #curl CVEs that are "C mistakes" are now at 39.16%
A trend? A fluke? We need to give it another half-decade or so to be able to tell for sure.
(Flaws listed as "C mistakes" are vulnerabilities that we deem are likely to not have happened should we have used a memory-safe language rather than C)