FRINK Linked Data Fragments server

Matches in SemOpenAlex for { <https://semopenalex.org/work/W4385270027> ?p ?o ?g. }

• W4385270027 abstract "Bugs in memory-unsafe languages are a major source of critical vulnerabilities. Large-scale fuzzing campaigns, such as Google's OSS-Fuzz, can help find and fix these bugs. To find bugs faster during fuzzing, as well as to cluster and triage the bugs more easily in an automated setup, the targets are compiled with a set of sanitizers enabled, checking certain conditions at runtime. The most common sanitizer, ASan, reports common bug patterns found during a fuzzing campaign, such as out-of-bounds reads and writes or use-after-free bugs, and aborts the program early. The information also contains the type of bug the sanitizer found. During triage, out-of-bounds reads are often considered less critical than other bugs, namely out-of-bounds writes and use-after-free bugs. However, in this paper we show that these more severe vulnerabilities can remain undetected in ASan, shadowed by an earlier faulty read access. To prove this claim empirically, we conduct a large-scale study on 814 out-of-bounds read bugs reported by OSS-Fuzz. By rerunning the same testcases, but disabling ASan's early exits, we show that almost five percent of test cases lead to more critical violations later in the execution. Further, we pick the real-world target wasm3, and show how the reported out-of-bounds read covered up an exploitable out-of-bounds write, that got silently patched." @default.
• W4385270027 created "2023-07-27" @default.
• W4385270027 creator A5038612770 @default.
• W4385270027 creator A5066091127 @default.
• W4385270027 creator A5086828434 @default.
• W4385270027 date "2023-05-01" @default.
• W4385270027 modified "2023-10-02" @default.
• W4385270027 title "ASanity: On Bug Shadowing by Early ASan Exits" @default.
• W4385270027 cites W3093824853 @default.
• W4385270027 cites W3173990398 @default.
• W4385270027 cites W4308632293 @default.
• W4385270027 cites W4308643127 @default.
• W4385270027 doi "https://doi.org/10.1109/spw59333.2023.00037" @default.
• W4385270027 hasPublicationYear "2023" @default.
• W4385270027 type Work @default.
• W4385270027 citedByCount "0" @default.
• W4385270027 crossrefType "proceedings-article" @default.
• W4385270027 hasAuthorship W4385270027A5038612770 @default.
• W4385270027 hasAuthorship W4385270027A5066091127 @default.
• W4385270027 hasAuthorship W4385270027A5086828434 @default.
• W4385270027 hasBestOaLocation W43852700272 @default.
• W4385270027 hasConcept C1009929 @default.
• W4385270027 hasConcept C111065885 @default.
• W4385270027 hasConcept C111919701 @default.
• W4385270027 hasConcept C177264268 @default.
• W4385270027 hasConcept C194828623 @default.
• W4385270027 hasConcept C199360897 @default.
• W4385270027 hasConcept C2777120189 @default.
• W4385270027 hasConcept C2777904410 @default.
• W4385270027 hasConcept C41008148 @default.
• W4385270027 hasConcept C71924100 @default.
• W4385270027 hasConceptScore W4385270027C1009929 @default.
• W4385270027 hasConceptScore W4385270027C111065885 @default.
• W4385270027 hasConceptScore W4385270027C111919701 @default.
• W4385270027 hasConceptScore W4385270027C177264268 @default.
• W4385270027 hasConceptScore W4385270027C194828623 @default.
• W4385270027 hasConceptScore W4385270027C199360897 @default.
• W4385270027 hasConceptScore W4385270027C2777120189 @default.
• W4385270027 hasConceptScore W4385270027C2777904410 @default.
• W4385270027 hasConceptScore W4385270027C41008148 @default.
• W4385270027 hasConceptScore W4385270027C71924100 @default.
• W4385270027 hasLocation W43852700271 @default.
• W4385270027 hasLocation W43852700272 @default.
• W4385270027 hasLocation W43852700273 @default.
• W4385270027 hasOpenAccess W4385270027 @default.
• W4385270027 hasPrimaryLocation W43852700271 @default.
• W4385270027 hasRelatedWork W197614256 @default.
• W4385270027 hasRelatedWork W2166247150 @default.
• W4385270027 hasRelatedWork W2517087431 @default.
• W4385270027 hasRelatedWork W3006477812 @default.
• W4385270027 hasRelatedWork W3017338730 @default.
• W4385270027 hasRelatedWork W3021250941 @default.
• W4385270027 hasRelatedWork W4232884709 @default.
• W4385270027 hasRelatedWork W4284678181 @default.
• W4385270027 hasRelatedWork W4322716318 @default.
• W4385270027 hasRelatedWork W4385625698 @default.
• W4385270027 isParatext "false" @default.
• W4385270027 isRetracted "false" @default.
• W4385270027 workType "article" @default.