More than half (52%) of critical open source projects contain code written in a memory-unsafe language, according to a new analysis by the Cybersecurity and Infrastructure Security Agency (CISA) in collaboration with government agency partners from Australia and Canada. The Exploring Memory Safety in Critical Open Source Projects joint report investigated the scale of memory safety risk in open source software.

Source: Infosecurity Magazine – Information Security & IT Security