Risk
1/9/2014
04:42 PM
Dark Reading
Dark Reading
Products and Releases
50%
50%

Rogue Wave Software Acquires Source Code Analysis Vendor Klocwork

Klocwork offers tools that analyze source code on-the-fly, simplify peer code reviews, and extend the life of complex software

BOULDER, COLORADO--(Marketwired - Jan. 9, 2014) - Rogue Wave Software announced today that it has acquired Klocwork Inc., a global leader in software development tools for creating more secure, reliable code. Klocwork offers tools that analyze source code on-the-fly, simplify peer code reviews, and extend the life of complex software. The addition of the Klocwork tools to TotalView(R) and the OLEX(TM) open source scanning solution complements and expands the Rogue Wave solutions for developers, enabling them to write better - more secure - code, faster.

"Rogue Wave has consistently provided market-leading frameworks and tools used by developers to enable software everywhere," said Brian Pierce, CEO of Rogue Wave. "With the addition of Klocwork, we greatly enhance our customers' ability to create secure and reliable code, while expanding our offering from the enterprise to the embedded development market. Klocwork's innovative team and technologies are an incredible addition to the Rogue Wave family."

Klocwork Insight(TM) is a source code analysis tool that seamlessly integrates into a developer's personal workflow on their desktop. It alerts developers to potential security vulnerabilities or reliability issues in real-time, as they are typing. Combined with Klocwork Cahoots(TM), a simple yet powerful code review platform, developers have solutions to assist with application security, source code analysis, code review, reporting and metrics, code refactoring and code architecture.

Klocwork's customers will continue to receive the same outstanding service and support, and benefit from the tremendous depth of Rogue Wave's products and resources. "Bringing these great teams and technologies together benefits our customers and advances the Rogue Wave developer toolset," said Mike Laginski, CEO of Klocwork. "Rogue Wave's long history of providing products to improve developers' ability to write secure, reliable enterprise applications, is the perfect fit for Klocwork."

About Rogue Wave Software

Rogue Wave Software, Inc. is the largest independent provider of cross-platform software development tools and embedded components. Rogue Wave application development products reduce the complexity of prototyping, developing, debugging, and optimizing multi-processor and data-intensive software applications. Rogue Wave customers include industry leaders in the Global 2000 as well as leading government institutions and universities. For more information, visit www.roguewave.com.

Comment  | 
Print  | 
More Insights
Register for Dark Reading Newsletters
White Papers
Cartoon
Current Issue
Dark Reading Tech Digest, Dec. 19, 2014
Software-defined networking can be a net plus for security. The key: Work with the network team to implement gradually, test as you go, and take the opportunity to overhaul your security strategy.
Flash Poll
Video
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2013-4440
Published: 2014-12-19
Password Generator (aka Pwgen) before 2.07 generates weak non-tty passwords, which makes it easier for context-dependent attackers to guess the password via a brute-force attack.

CVE-2013-4442
Published: 2014-12-19
Password Generator (aka Pwgen) before 2.07 uses weak pseudo generated numbers when /dev/urandom is unavailable, which makes it easier for context-dependent attackers to guess the numbers.

CVE-2014-2026
Published: 2014-12-19
Cross-site scripting (XSS) vulnerability in the search functionality in United Planet Intrexx Professional before 5.2 Online Update 0905 and 6.x before 6.0 Online Update 10 allows remote attackers to inject arbitrary web script or HTML via the request parameter.

CVE-2014-2716
Published: 2014-12-19
Ekahau B4 staff badge tag 5.7 with firmware 1.4.52, Real-Time Location System (RTLS) Controller 6.0.5-FINAL, and Activator 3 reuses the RC4 cipher stream, which makes it easier for remote attackers to obtain plaintext messages via an XOR operation on two ciphertexts.

CVE-2014-6395
Published: 2014-12-19
Heap-based buffer overflow in the dissector_postgresql function in dissectors/ec_postgresql.c in Ettercap before 8.1 allows remote attackers to cause a denial of service or possibly execute arbitrary code via a crafted password length value that is inconsistent with the actual length of the password...

Best of the Web
Dark Reading Radio
Archived Dark Reading Radio
Join us Wednesday, Dec. 17 at 1 p.m. Eastern Time to hear what employers are really looking for in a chief information security officer -- it may not be what you think.