Articles¶
These are some of the articles I authored:
LLVM CFI and Cross-Language LLVM CFI Support for the Rust Compiler¶
As the industry continues to explore Rust adoption, cross-language attacks in mixed-language binaries (also known as “mixed binaries”), and critically the absence of support for forward-edge control flow protection in the Rust compiler, are a major security concern when gradually migrating from C and C++ to Rust, and when C or C++ and Rust -compiled code share the same virtual address space. In this article I share the results of working with the Rust community to add LLVM CFI and cross-language LLVM CFI (and LLVM KCFI and cross-language LLVM KCFI) to the Rust compiler as part of the work in the upstream Rust Exploit Mitigations Project Group.
RevistaH2HC_17.pdf · View on H2HC Magazine (Portuguese [Brazil]) · View on H2HC Magazine (English)
Linux on Power/Cell BE Architecture Buffer Overflow Vulnerabilities¶
This article discusses buffer overflow vulnerabilities in Linux running on Power/Cell Broadband Engine Architecture processor-based servers. All examples presented on this article were developed and executed on an IBM BladeCenter JS22 Express server, a IBM BladeCenter QS21 server, and a Sony Playstation 3, running Red Hat Enterprise Linux 4 Update 7. Previous knowledge of buffer overflows is required.
lopbuffer.pdf · View on IBM developerWorks (Part 1) · View on IBM developerWorks (Part 2)
Linux Slab Allocator Buffer Overflow Vulnerabilities¶
This article discusses buffer overflow vulnerabilities in Linux kernel's Slab Allocator. All examples presented on this article were developed and executed on a x86 processor-based computer running Slackware Linux 10.2. Previous knowledge of buffer overflows is required.