Bug Analysis: Type Confusion in Syzbot

less than 1 minute read

Published: February 09, 2022

Syzbot Report: https://syzkaller.appspot.com/bug?id=8393c021d960cd9b36203efd312343a26d011997

 pppol2tp_connect-> l2tp_tunnel_create ->setup_udp_tunnel_sock

 udp_sk(sk)->encap_type = cfg->encap_type //struct udp_sock{__u8 encap_type;}

 socket_create 

Share on

Twitter Facebook LinkedIn

Useinterfolio

2 minute read

Published: December 02, 2024

How to Use Interfolio to Forward Recommendation Letters

Paper Notes: Statically Discovering High-Order Taint Style Vulnerabilities in OS Kernels (CCS 2021)

less than 1 minute read

Published: February 08, 2022

Novelty:

SUTURE employs a novel summary-based high-order taint flow construction approach to efficiently enumerate the cross-entry taint flows, while incorporating multiple innovative en- hancements on analysis precision that are unseen in existing tools, resulting in a highly precise inter-procedural flow-, context-, field-, index-, and opportunistically path-sensitive static taint analysis.

1 minute read

Yizhuo Zhai