While there is a large body of work on analyzing concurrency related software bugs and developing techniques for detecting and patching them, little attention has been given to concurrency related security vulnerabilities. The two are different in that not all bugs are vulnerabilities: for a bug to be exploitable, there needs be a way for attackers to trigger its execution and cause damage, e.g., by revealing sensitive data or running malicious code. To fill the gap, we conduct the first empirical study of concurrency vulnerabilities reported in the Linux operating system in the past ten years. We focus on analyzing the confirmed vulnerabilities archived in the Common Vulnerabilities and Exposures (CVE) database, which are then categorized ...
Part 1: Full PapersInternational audienceConcurrent programming puts demands on software debugging a...
Background Software systems are relying more and more on multi-core hardware requiring a parallel ap...
peer reviewedVulnerabilities are one of the main concerns faced by practitioners when working with s...
Just like bugs in single-threaded programs can lead to vulnerabilities, bugs in multithreaded progra...
Just as errors in sequential programs can lead to security exploits, errors in concurrent programs c...
Software is pervasive in our daily lives. Unfortunately, software bugs can severely affect the depen...
Many software systems today are concurrent programs as multi-core pro-cessors become popular. Howeve...
This paper received a Best Paper Award at EuroSys 2023International audienceKnowing which functions ...
Just as errors in sequential programs can lead to se-curity exploits, errors in concurrent programs ...
Concurrency faults are one of the most damaging types of faults that can affect the dependability of...
As developers face ever-increasing pressure to engineer secure software, researchers are building an...
Programming has become central in the development of human activities while not being immune to def...
International audienceIn Linux device drivers, use-after-free (UAF) bugs can cause system crashes an...
Concurrent software has been increasingly adopted in recent years, mainly due to the introduction of...
Part 1: Full PapersInternational audienceConcurrent programming puts demands on software debugging a...
Background Software systems are relying more and more on multi-core hardware requiring a parallel ap...
peer reviewedVulnerabilities are one of the main concerns faced by practitioners when working with s...
Just like bugs in single-threaded programs can lead to vulnerabilities, bugs in multithreaded progra...
Just as errors in sequential programs can lead to security exploits, errors in concurrent programs c...
Software is pervasive in our daily lives. Unfortunately, software bugs can severely affect the depen...
Many software systems today are concurrent programs as multi-core pro-cessors become popular. Howeve...
This paper received a Best Paper Award at EuroSys 2023International audienceKnowing which functions ...
Just as errors in sequential programs can lead to se-curity exploits, errors in concurrent programs ...
Concurrency faults are one of the most damaging types of faults that can affect the dependability of...
As developers face ever-increasing pressure to engineer secure software, researchers are building an...
Programming has become central in the development of human activities while not being immune to def...
International audienceIn Linux device drivers, use-after-free (UAF) bugs can cause system crashes an...
Concurrent software has been increasingly adopted in recent years, mainly due to the introduction of...
Part 1: Full PapersInternational audienceConcurrent programming puts demands on software debugging a...
Background Software systems are relying more and more on multi-core hardware requiring a parallel ap...
peer reviewedVulnerabilities are one of the main concerns faced by practitioners when working with s...