blt
commented
5 years ago CWE-680: Integer Overflow to Buffer Overflow
Details: https://groups.google.com/forum/#!topic/rustlang-security-announcements/CmSuTm-SaU0 Impacted version: Rust 1.26.0 stable to 1.29.0 stable
Any bug searching technique lives and dies by its ability to find, well, bugs. To judge how well our approach is doing in this project we need a list of known defects. That is:
From this we can start to build a table of Time to Discovery for the given issue.