"Testing can prove the presence of bugs, but not their absence." -- Edsger W. Dijkstra
- 2003-01-openssh. OpenSSH/PAM delay information disclosure vulnerability (CVE-2003-0190).
- CVE-2006-5229. OpenSSH information disclosure via timing leak.
- CVE-2006-1242. Linux kernel IP ID information disclosure weakness.
- 2019-01-cde-dtprintinfo. Local privilege escalation via CDE dtprintinfo (CVE-2019-2832).
- 2019-02-solaris-xscreensaver. Local privilege escalation via xscreensaver (CVE-2019-3010).
- 2020-01-solaris-xlock. Low impact information disclosure via Solaris xlock (CVE-2020-2656).
- 2020-02-cde-dtsession. Local privilege escalation via CDE dtsession (CVE-2020-2696).
- smbfs/umount. Buffer overflow in smbfs/umount.