Explore a groundbreaking technical method for transforming seemingly low-risk kernel bugs into critical memory corruption vulnerabilities in this 30-minute Black Hat conference talk. Delve into the world of kernel fuzzing techniques and their impact on bug discovery, with a focus on the Linux kernel. Learn how security analysts prioritize memory corruption vulnerabilities over other types of kernel bugs, and understand why these vulnerabilities are crucial for potential kernel exploitation and unauthorized root privilege escalation. Gain insights from the presenters' analysis of over 2,000 kernel bug reports generated by Syzkaller on the Linux platform over a two-year period. Discover the innovative approach developed by Yueqi Chen, Kang Li, Zhenpeng Lin, and Xinyu Xing to elevate the security implications of previously overlooked kernel issues.
Overview
Syllabus
Your Trash Kernel Bug, My Precious 0-day
Taught by
Black Hat
Related Courses
-
A General Approach to Bypassing Many Kernel Protections and Its Mitigation
-
Sanitizing the Linux Kernel - KASAN and Other Dynamic Bug-finding Tools
-
Deep Analysis of Exploitable Linux Kernel Vulnerabilities 2017-2019
-
Bochspwn Reloaded - Detecting Kernel Memory Disclosure with x86 Emulation and Taint Tracking
-
ModJack - Hijacking the MacOS Kernel
-
Drill Apple Core - Up and Down - Fuzz Apple Core Component in Kernel and User Mode for Fun and Profit
