Modern Intel, AMD, and ARM processors translate complex instructions into simpler internal
micro-ops that are then cached in a dedicated on-chip structure called the micro-op cache …

The monolithic nature of modern OS kernels leads to a constant stream of bugs being
discovered. It is often unclear which of these bugs are worth fixing, as only a subset of them …

A large number of memory corruption vulnerabilities, eg, heap overflow and use after free
(UAF), could only be exploited in specific heap layouts via techniques like heap feng shui …

Decompilers, one of the widely used security tools, transform low-level binary programs
back into their high-level source representations, such as C/C++. While state-of-the-art …

The dynamic of the Linux kernel heap layout significantly impacts the reliability of kernel
heap exploits, making exploitability assessment challenging. Though techniques have been …

Rust is an emerging programming language that aims at preventing memory-safety bugs
without sacrificing much efficiency. The claimed property is very attractive to developers, and …

Fuzzing has become one of the most effective bug finding approach for software. In recent
years, 24* 7 continuous fuzzing platforms have emerged to test critical pieces of software …

Dynamic memory allocators are critical components of modern systems, and developers
strive to find a balance between their performance and their security. Unfortunately …

Exploitation techniques to abuse metadata of heap allocators have been widely studied
because of their generality (ie, application independence) and powerfulness (ie, bypassing …

This paper studies the problem of cross-version exploitability assessment for Linux kernels.
Specifically, given an exploit demonstrating the exploitability of a vulnerability on a specific …