Wheeler: Insecure open source software libraries?
Wheeler: Insecure open source software libraries?
[Security] Posted Apr 6, 2012 18:05 UTC (Fri) by ris
David A. Wheeler cautions
against the practice of using bundled libraries. This is probably is not news
to many LWN readers, but it does serve as a reminder. "An advantage of OSS is that many people can review the software, find problems (including vulnerabilities), and fix them… but this advantage is lost if the fixed versions are not used!
"