Klocwork's open source program analyzed OpenSSL using its static analysis product, Klocwork Insight, to give a report on bugs and potential security vulnerabilities in the project. We hope these results will be of value to project contributors. The results are hosted on a secure web portal that you can access with the username openssl For the password, please email opensoure at klocwork dot com with OpenSSL in your subject line and I will provide it to you off-list.
Issue Summary: https://opensource.klocwork.com/review/insight-review.html#reportviewer_goto:project=openssl,report=6,scope=1 Full Details/Issue Management: http://goo.gl/uuumB This program is offered free to open source projects. Any feedback you have is welcome. If the results are useful, we'd appreciate a mention of Klocwork in any bugs you file, project documentation or wherever makes sense for OpenSSL so we can spread the word to other open source projects. Please let me know if you have any questions. Cheers, Lynn Gayowski Klocwork opensource at klocwork dot com
