To avert another Heartbleed, group narrows list of projects in need of support
A group dedicated to averting another Heartbleed-style vulnerability is narrowing down a list of critical open source projects that will receive its funding and support.
The Core Infrastructure Initiative (CII), which was formed last year to identify open-source projects in need of extra support, expects to name the projects that will receive its backing within a few months, said Jim Zemlin, executive director of the Linux Foundation, which oversees the CII.
The CII was formed after serious vulnerabilities were found last in the widely used OpenSSL security software. The disclosure caused alarm among companies whose applications make use of OpenSSL and might have been put at risk.