SUBMISSION FOR SATE-2009 BY COVERITY, 9/4/2009
==============================================
This is the submission of the results for Coverity Prevent for C/C++
on the 2nd Static Analysis Tool Exposition.


FILES INCLUDED
--------------
README.txt  (this file)
Coverity-SATE2009-pvm3.xml  (pvm3 results)
Coverity-SATE2009-irssi.xml  (irssi results)
CWE Checker classification.xlsx  (CWE mappings, see below)


SOURCE CODE PACKAGES ANALYZED
-----------------------------
. pvm3
. irssi


ENVIRONMENT
-----------
Tool: Prevent for C/C++, version 4.5.0 (current release).
Platform: RHEL 5.2, 64-bit x86
Analysis Options: --all  (normal use of product)


COMMENTS
--------
. Our tool found a large number of parse warnings in the pvm3 package.
  These are all valid, but any customer focusing on security would
  usually turn them off (a minor tweak to our configuration).
. We used the original non-path checking schema for the irssi results
  because of a valid reference to an include file in /usr/include which
  the schema does not understand.
. The current version of our tool does not output corresponding CWE
  values, but we have included a spreadsheet with the mappings. These
  mappings are currently being added to the tool.
