Date: Thu, 20 Nov 2014 06:00:02 +1100 From: Joshua Rogers <oss@...ernot.info> To: oss-security@...ts.openwall.com Subject: Re: RE: [security-vendor] Re: Fuzzing findings (and maybe CVE requests) - Image/GraphicsMagick, elfutils, GIMP, gdk-pixbuf, file, ndisasm, less On 19/11/14 18:19, Gynvael Coldwind wrote: > We fuzzed clamav in 2012 or so and reported some bugs. Definitely a good > target. > > To be honest I would love to see all AV security tested, not just the open > source one. If they claim they make people more secure, it would be great > to know that that is backed by e.g. fuzzing and bug bounty programs. That reminds me of this.. http://an7isec.blogspot.com.au/2014/04/pown-noobs-acunetix-0day.html Funny stuff. -- -- Joshua Rogers <https://internot.info/>
Powered by blists - more mailing lists
Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.
Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.