Has there been a public, in-depth, 3rd party review of the standard bitcoin client?  I have experience with software engineering... an industry average is at least 1 bug per 1000 lines of code.  The bugs might be trivial or critical, easy to spot or hard to discern or activate.  I am NOT saying that the people who write bad code, but that programs are written by humans, and even the best of us make mistakes.

http://mayerdan.com/ruby/2012/11/11/bugs-per-line-of-code-ratio/

http://security.stackexchange.com/questions/21137/average-number-of-exploitable-bugs-per-thousand-lines-of-code

http://www.techrepublic.com/blog/it-security/the-danger-of-complexity-more-code-more-bugs/

Kudos on the protocol fuzzing work that appears to be going on.