PRTODAY / NewswireToday Free press release distribution service network

Written by / Agency / Source: Coverity, Inc.

Check Ads Availability|e-mail Article


Are you the owner of this article?, Turn it PREMIUM with your LOGO instead - and make it 3rd party Ads-Free! within the next hour!

Coverity Releases Security Spotlight Report on Critical Security Defects in Open Source Projects - Coverity, Inc., a Synopsys company announced the release of its latest Coverity Scan™ Project Spotlight, which analyzed the security defects detected by its open source software scanning service - Coverity.com
Coverity Releases Security Spotlight Report on Critical Security Defects in Open Source Projects

 

NewswireToday - /newswire/ - San Francisco, CA, United States, 2014/10/15 - Coverity, Inc., a Synopsys company announced the release of its latest Coverity Scan™ Project Spotlight, which analyzed the security defects detected by its open source software scanning service - Coverity.com. NASDAQ: SNPS

   
 
Your Banner Ad Here instead - Showing along with ALL Articles covering IT Security/Anti-Spam Announcements

Replace these Affiliate Programs at ANYTIME! Your banner here within the next hour. Learn How!


 

In conjunction with the release of the report, Coverity also announced that it would enhance the Coverity Scan service by including the Coverity® Security Advisor solution to the service so projects can now find critical Open Web Application Security Project (OWASP) Top 10 issues. The service has also been expanded to now include C# open source projects.

Recent high-profile vulnerabilities in open source code, including Shellshock, the OpenSSL Heartbleed and GoToFail vulnerabilities, have highlighted the importance of code quality and security for organizations. The Coverity Scan Security Spotlight identifies several common defects and exposures (CVEs) in open source code, and identifies that the GoToFail vulnerability could have been detected in Scan.

Since the inception of the Coverity Scan service in 2006, Coverity has enabled open source projects to find and fix critical security issues, including buffer overflows, integer overflows, and format string errors in C/C++ code. With today’s announcement, the company is now enabling Java developers to find and fix security issues in their software code, including all of the OWASP Top 10 and other web application security issues.

The OWASP Top 10 presents the most critical threat to open source code. In the short time since Coverity Scan has been able to detect web application security defects in Java, the service has identified 688 OWASP Top 10 issues in 37 open source projects, including big data, network management, and blog server projects. The following are the specific number of OWASP Top 10 issues found:

“The road to application quality and security starts in development,” said Zack Samocha, Senior Director of Products at Coverity. “With three major security issues related to open source code defects this year, it’s imperative that open source developers design code security into their projects starting as early as possible and utilize security experts to help them understand vulnerable areas in the code and potential attack vectors. Open source developers should leverage some of the best practices for application security employed by proprietary projects such as using static analysis and conducting regular security audits.”

During the past eight years, the Coverity Scan service has analyzed several hundreds of millions of lines of code from more than 1,500 open source projects including C/C++ projects such as NetBSD, FreeBSD, LibreOffice and Linux, and Java projects such as Apache Hadoop, HBase and Cassandra. The Scan service has helped developers find and fix more than 94,000 defects since 2006. Nearly 50,000 defects were fixed in 2013 alone the largest single number of defects fixed in a single year by Scan users. More than 11,000 of these defects were fixed by the four largest projects in the service: NetBSD, FreeBSD, LibreOffice and Linux.

About Coverity Scan
In 2006, the Coverity Scan service was initiated with the U.S. Department of Homeland Security as a public-private sector research project, focused on open source software quality and security. Coverity now manages the project, providing its development testing technology as a free service to the open source community to help them build quality and security into their software development process. Register your open source project for the Coverity Scan service, and follow us on Twitter to get the latest updates.

About Coverity
Coverity, Inc. (coverity.com), a Synopsys company, is a leading provider of software quality and security testing solutions. Coverity’s award-winning development testing platform helps developers create and deliver better software, faster, by automatically testing source code for software defects that could lead to product crashes, unexpected behavior, security breaches or catastrophic system failure. The world’s largest brands rely on Coverity to help ensure the quality, safety and security of their products and services.

 
 
Your Banner Ad Here instead - Showing along with ALL Articles covering IT Security/Anti-Spam Announcements

Replace these Affiliate Programs at ANYTIME! Your banner here within the next hour. Learn How!


 

Written by / Agency / Source: Coverity, Inc.

 
 

Availability: All Regions (Including Int'l)

 

Traffic Booster: [/] Quick Newswire Today Visibility Checker

 

Distribution / Indexing: [+] / [Company listed above is a registered member of our network. Content made possible by PRZOOM / PRTODAY indexing services]

 
 
# # #
 
IT Security Anti-Spam Computer Security - Purchase keywords tags antivirus software firewall spyware removal virus scan computer security IT Security Anti-Spam malware / Banner Ads!.

 
  Your Banner Ad showing on ALL
IT Security/Anti-Spam articles,
CATCH Visitors via Your Competitors Announcements!


Coverity Releases Security Spotlight Report on Critical Security Defects in Open Source Projects

Company website links NOT available to basic submissions
It is OK to republish and/or LINK any newswire for any legitimate media purpose as long as you name Newswire Today and LINK as the source.
 
  Is this your article?
Activate ALL web links and social stream by Upgrading to Press Release PREMIUM Plan Now!

Coverity Scan™ Project | OWASP
Publisher Contact: Press Office - Coverity.com 
415-321-5200 press[.]coverity.com
 
Newswire Today - PRZOOM / PRTODAY disclaims any content contained in this article. If you need/wish to contact the company who published the current release, you will need to contact them - NOT us. Issuers of articles are solely responsible for the accuracy of their content. Our complete disclaimer appears here.
IMPORTANT INFORMATION: Issuance, publication or distribution of this press release in certain jurisdictions could be subject to restrictions. The recipient of this press release is responsible for using this press release and the information herein in accordance with the applicable rules and regulations in the particular jurisdiction. This press release does not constitute an offer or an offering to acquire or subscribe for any Coverity, Inc. securities in any jurisdiction including any other companies listed or named in this release.

IT Security/Anti-Spam via RSSAdd NewswireToday - PRZOOM Headline News to FeedBurner
Find who RetweetFollow @NewswireTODAY



Are you the owner of this article?, Turn it PREMIUM with your LOGO instead - and make it 3rd party Ads-Free! within the next hour!


Read Latest Articles From Coverity, Inc. / Company Profile


Read IT Security/Anti-Spam Most Recent Related Newswires:

Regional Community Bank Expands Use of Fraud and Security Intelligence Solutions from Verint
Algar Telecom Selects Sonus Cloud-Native Session Border Controller for Nationwide SIP Services Expansion
Verint and Group Elite Communications Announce New Partnership
NEC Technology Enables Ink Dots to Become Identification Tags
Sonus Becomes First SIP-Centric Security Vendor to Join Fortinet’s Fabric-Ready Partner Program
Radware Powers TierPoint’s Best-In-Class DDoS Mitigation Service
Radware and Nokia Partner to Provide Best-In-class DDoS Attack Detection and Mitigation
Flexera & Microsoft Join Forces to Increase Software Supply Chain Transparency & Strengthen Customer Relationships
NEC to Provide Lisbon with Smart City Infrastructure for Integrated Management of the Entire City
Ensono Achieves AWS Microsoft Workloads Competency Status
NEC Provides Facial Recognition System to South Wales Police in the UK
NEC Joins Hyperledger to Advance Blockchain Technology
NEC Receives Frost & Sullivan's 2017 Asia Pacific Integrated Biometrics Solutions for Public Safety Leadership Award
Comodo and e-Safer Certificate Division TrustCert Partner to Expand Cybersecurity Solutions in Brazil
Verint Receives 2017 Vendor of the Year Award from Frost & Sullivan Asia Pacific

Boost Your Social Network
& Crowdfunding Campaigns


LIFETIME SOCIAL MEDIA WALL
NewswireToday Celebrates 10 Years in Business


PREMIUM Members


Visit  BizJobs.com

Visit  MagLar, Inc.





 
  ©2017 Newswire Today — Limelon Advertising, Co.
Home | About | Advertise/Pricing | Contact | Investors | Privacy/TOS | Sitemap | FRANCAIS
newswire, PR press releases distribution service magazines engine news alert newsroom press room breaking news public relations articles company news alerts newswiredistribution ezine bizentrepreneur biznewstoday digital business report market search pr firms agencies reports distri-bution today investor relation successful internet entrepreneurs newswire distribution prtoday.com freenewswiredistribution asianewstoday bizwiretoday USA pr UK today - NOT affiliated with PRNewswire as we declined their partnership offer in 2013
 
PRTODAY & NewswireTODAY are NOT affiliated with USA TODAY (usatoday.com)