Between January 2012 and March 2014 more than 160 giga dollars were spent for Internet security. You would think that much of it would care about Encryption. One would further think that some of this money would go into evaluation of the actual code of library mostly in use: OpenSSL. Apparently not enough.
There are between 3 and 10 contributors to OpenSSL, which provide a total of around 50 code commits a month.
If the security Industry would spend only 0.01% of their earnings on these code commits, then each one would have a review budget of 10 kilo dollars.