Hi, my name is Qiuhao Li, a script kiddie who wants to be a hacker.
Now I am a security engineer mainly focusing on software security and fuzz testing.
Besides hacking, I like listening to classical music and going hiking :)
News:
-
May 2022
-
Apr 2022
- [Vulnerability Disclosure]
Linux Kernel v5.2+: x86/kvm: cmpxchg_gpte can write to pfns outside the userspace region
openwall.com
-
Nov 2021
- [Vulnerability Disclosure]
QEMU/SCSI: Global Buffer Overflow in Mode Pages Array
.txt
- [Vulnerability Disclosure]
QEMU/SCSI: Heap Overflow in megasas
.txt
-
Oct 2021
- [Vulnerability Disclosure]
QEMU/NVMe: Arbitrary Memory Read
.txt
- [Bug Report]
VirtualBox/SCSI: NULL Pointer Dereference
.txt
-
Aug 2021
- [Vulnerability Disclosure]
QEMU/EHCI: Reentry flaw leads to UAF
.txt
-
Jul 2021
- [Chinese Note]
调研报告:并行与集成模糊测试 v0.2.0
.pdf
-
Apr 2021
- [Patch]
SPICE/libspice-server: Fix nullptr dereference in red-parse-qxl.cpp
freedesktop.org
-
Mar 2021
- [Chinese Note]
QEMU/fuzz: 通过配比IO操作符权重以提升fork(2)质量
.pdf
-
Feb 2021
- [Vulnerability Disclosure]
FFmpeg/libavcodec: Double free hevc context
.txt
- [Presentation]
Practical Tutorial: A script kiddie’s fuzzing trip
.pdf
-
Jan 2021
- [Bug Report]
GNU Coreutils: Heap underflow when expr(1) mishandles unmatched \(...\) in regular expressions
github.com
- [Patch]
QEMU/rtl8139: Mitigate DMA to MMIO regions while fuzzing
.txt
-
Dec 2020
-
Oct 2020
- [Paper Review]
USBFuzz: A Framework for Fuzzing USB Drivers by Device Emulation
.txt
- [Vulnerability Disclosure]
QEMU/Slirp: OOB access while processing ARP/NCSI packets
.txt
-
Jan 2020
- [Project]
Hack-Linux-0.11: Ancient OS labs
github.com
-
Obsolete
-
Eternal
- [Links]
Some of my homies :)
.txt
- [Album]
Life is fantastic!
img/