[PDF][PDF] Context-sensitive and directional concurrency fuzzing for data-race detection
Fuzzing is popular for bug detection and vulnerability discovery nowadays. To adopt fuzzing
for concurrency problems like data races, several recent concurrency fuzzing approaches …
for concurrency problems like data races, several recent concurrency fuzzing approaches …
Programmable system call security with ebpf
J Jia, YF Zhu, D Williams, A Arcangeli… - arXiv preprint arXiv …, 2023 - arxiv.org
System call filtering is a widely used security mechanism for protecting a shared OS kernel
against untrusted user applications. However, existing system call filtering techniques either …
against untrusted user applications. However, existing system call filtering techniques either …
Sound and partially-complete static analysis of data-races in gpu programs
D Liew, T Cogumbreiro, J Lange - Proceedings of the ACM on …, 2024 - dl.acm.org
GPUs are progressively being integrated into modern society, playing a pivotal role in
Artificial Intelligence and High-Performance Computing. Programmers need a deep …
Artificial Intelligence and High-Performance Computing. Programmers need a deep …
Controlled concurrency testing via periodical scheduling
Controlled concurrency testing (CCT) techniques have been shown promising for
concurrency bug detection. Their key insight is to control the order in which threads get …
concurrency bug detection. Their key insight is to control the order in which threads get …
Place your locks well: understanding and detecting lock misuse bugs
Modern multi-threaded software systems commonly leverage locks to prevent concurrency
bugs. Nevertheless, due to the complexity of writing the correct concurrent code, using locks …
bugs. Nevertheless, due to the complexity of writing the correct concurrent code, using locks …
Detecting concurrency memory corruption vulnerabilities
Memory corruption vulnerabilities can occur in multithreaded executions, known as
concurrency vulnerabilities in this paper. Due to non-deterministic multithreaded executions …
concurrency vulnerabilities in this paper. Due to non-deterministic multithreaded executions …
[PDF][PDF] DDRace: Finding Concurrency UAF Vulnerabilities in Linux Drivers with Directed Fuzzing.
Concurrency use-after-free (UAF) vulnerabilities account for a large portion of UAF
vulnerabilities in Linux drivers. Many solutions have been proposed to find either …
vulnerabilities in Linux drivers. Many solutions have been proposed to find either …
Canary: practical static detection of inter-thread value-flow bugs
Concurrent programs are still prone to bugs arising from the subtle interleavings of threads.
Traditional static analysis for concurrent programs, such as data-flow analysis and symbolic …
Traditional static analysis for concurrent programs, such as data-flow analysis and symbolic …
A heuristic framework to detect concurrency vulnerabilities
With a growing demand of concurrent software to exploit multi-core hardware capability,
concurrency vulnerabilities have become an inevitable threat to the security of today's IT …
concurrency vulnerabilities have become an inevitable threat to the security of today's IT …
{LR-Miner}: Static Race Detection in {OS} Kernels by Mining Locking Rules
Data race is one of the most common concurrency issues in OS kernels, and it can cause
severe problems like system crashes and privilege escalation. Therefore, detecting kernel …
severe problems like system crashes and privilege escalation. Therefore, detecting kernel …