Brian Krebs carries out an analysis of the time it take the Mozilla team to fix security vulnerabilities in their various open source applications (including Mozilla Suite, Firefox and Thunderbird).

The results are interesting - in the past three years Mozilla have patched a third of all vulnerabilities within 10 days of notification.  That's pretty good going and only a third of the average time it took Microsoft to fix critical flaws in Windows (although having said that, Windows is a much bigger application than anything Mozilla have and it takes a lot longer to test a fix). 

While I would like to see Microsoft release patches quicker (maybe as beta patches) I wonder how these figures will change at Mozilla has projects become bigger and more complex and what would happen if more bugs were discovered.

Still, that's good work from the Mozilla team.

Technorati Tags: Mozilla Suite, Firefox, Thunderbird, Mozilla

This entry was posted on Tuesday, February 7th, 2006 at 15:32 and is filed under Stay Secure. You can follow any responses to this entry through the RSS 2.0 feed. Responses are currently closed, but you can trackback from your own site.