| 1 |
On Fri, Aug 5, 2011 at 12:05 AM, Thanasis <thanasis@××××××××××.org> wrote: |
| 2 |
|
| 3 |
> I noticed that chromium's code has a lot of vulnerabilities. |
| 4 |
> https://bugs.gentoo.org/buglist.cgi?quicksearch=www-client%2Fchromium |
| 5 |
> I suppose this is why we see so often version upgrades of it (and it's |
| 6 |
> not a small app to build). |
| 7 |
> Why is its code so, should I say prone to bugs, compared to |
| 8 |
> other browsers? |
| 9 |
> |
| 10 |
> |
| 11 |
Firefox isn't perfect either |
| 12 |
https://bugs.gentoo.org/buglist.cgi?quicksearch=www-client%2Ffirefox&list_id=337885 |
| 13 |
|
| 14 |
I think you hit the nail on the head by saying that "it's not a small app to |
| 15 |
build". The more code that's written increases the the chances a security |
| 16 |
holes will be introduced into the application. |
| 17 |
And as an internet browser, they're also susceptible to many more vectors of |
| 18 |
attack than most other packages. For chromium specifically, I haven't looked |
| 19 |
at the CVEs but I suspect many are for webkit and not just Chromium. |
| 20 |
|
| 21 |
Just my 2c. |
Archives