Third, other security researchers have noticed my success and demonstrated that they can write similarly powerful fuzzers. Second, modern Firefox is much less fragile, thanks to architectural changes to areas that once oozed with fuzz bugs. So now I'm mostly finding regressions in the Nightly channel, and the severe ones are fixed well before they reach most Firefox users. But three things have changed that have tipped the balance toward openness.įirst, each area of Firefox has been through many fuzz-fix cycles. I had to keep these fuzzers private for a long time because of the frequency with which they found security holes in Firefox. Over the last 11 years, these fuzzers have found 6450 Firefox bugs, including 790 bugs that were rated as security-critical. Today I'm releasing two fuzzers: jsfunfuzz, which tests JavaScript engines, and DOMFuzz, which tests layout and DOM APIs.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |