New Coverity Product Saves Embedded Industry Leaders
Millions of Dollars
Brocade, Digeo, palmOne, Sleepycat Software, Symbol, Wind River reduce product defects with new version of Coverity Prevent

SAN FRANCISCO, March 8, 2005 – Coverity, Inc., makers of the world's most advanced and scalable source code analysis solution for pinpointing software defects and security vulnerabilities, today announced the general availability of Coverity Prevent version 2.1 with new features designed to help embedded developers find defects in software. The company also announced that embedded industry leaders Brocade, Digeo, palmOne, Sleepycat Software, Symbol, and Wind River have licensed the product and have already saved millions of dollars.

"We use Coverity on a continuous basis during our nightly software builds for all of our main products. To date, it has found many bugs-some of them critical. Developer adoption has been rapid and the CTO has mandated that all software projects be "Coverity clean" before release," said Douglas Hart, engineering manager at Digeo.

"Wind River has a long history of delivering quality device software solutions that help developer create products faster, better, at a lower cost and more reliably," said John Fanelli, vice president of product planning and management. "As part of our ongoing quest to offer high quality, reliable solutions to our customers, we rely on strong analysis tools such as those from Coverity."

"Brocade has benefited from working with Coverity's products," said Kinney Sumal, director of software engineering at Brocade Communications Systems. "Coverity Prevent helps us improve productivity and reduce time to market."

"Leaders in the embedded industry came to us with the extremely costly problem of having to fix security vulnerbilities and software defects in the field," said Seth Hallem, CEO of Coverity. "We designed the new version of Coverity Prevent to find and eliminate software defects before embedded products ship to the field. Embedded equipment manufacturers using Coverity Prevent have already identified over $2 million in cost savings."

Coverity extended the capability of Coverity Prevent, their flagship source code analysis product with a new feature that finds overruns of limited-size stacks common in embedded operating system kernels and device drivers. This class of errors can be extremely costly as it often causes complete crashes of the software and operating system. The problem often occurs in embedded product design where developers are faced with limited resources and strict stack limitations.

Memory leak analysis has also been improved. The new product addresses recursive code structures and returns false positive rates of less than 20%. Memory leaks and overruns of limited-size stacks are two of the most costly software errors in embedded product development.

Coverity will demonstrate their new product in booth #1641 at the Embedded Systems Conference in San Francisco, March 8-10, 2005.

About Coverity's Products
Coverity's core technology runs on a wide variety of hardware and software platforms used by C and C++ developers. It is unique amongst source code analysis solutions in both its precision and scalability. Unlike many competing technologies, Coverity simulates the effects that the operations in the source code might have in the runtime environment, rather than searching the source code for known, dangerous coding patterns or potentially sloppy coding constructs. The result is that the defects detected by Coverity's analysis platform are potentially disastrous runtime errors that must be fixed in the source code. In addition, Coverity is designed to integrate easily into existing software development practices without any changes to existing build systems or existing development tools.

About Coverity, Inc.
Coverity (www.coverity.com), makers of the world's most advanced and scalable source code analysis solution for pinpointing software defects and security vulnerabilities, is a privately-held company headquartered in San Francisco. Coverity was founded in 2002 by leading Stanford University scientists whose four-year research project resulted in a breakthrough approach for addressing the costliest problem in the software industry. That research breakthrough allows developers to quickly and precisely eliminate software defects and security vulnerabilities in tens of millions of lines of new or legacy code. Today, Coverity's solution is used by more than 40 leading companies to significantly improve the quality of their software, including Juniper Networks, VERITAS, McAfee, Synopsys, NASA, PalmOne, Sun Microsystems and Wind River.

Coverity is a registered trademark, and Coverity Extend and Coverity Prevent are trademarks of Coverity, Inc. All other company and product names are the property of their respective owners.

Media Contacts
David Park
dave@coverity.com
(415) 321-5204

Craig Oda
Page One PR
coda@pageonepr.com
(650) 565-9800, x102