Researcher Jenny Guanni Qu from Pebblebed analyzed over 125,000 bugs from 20 years of Linux kernel development, revealing that average bug detection takes 2.1 years, with 86.5% found within five years. The study utilized a tool that tracked bug fix commits, showing significant improvements in finding bugs within a year, increasing from 0% in 2010 to 69% in 2022, attributed to advancements like the Syzkaller fuzzer and better analysis tools. Despite faster detection, approximately 5,400 long-standing bugs remain. Additionally, an AI model, VulnBERT, identifies potentially vulnerable commits, achieving a 92.2% catch rate for bug-inducing changes.
Loading PerspectiveSplit analysis...
