Hi, my name is 李秋豪 (lǐ qiū háo), a script kiddie who wants to be a hacker.

Now I am doing a master’s degree in cyberspace security at Harbin Institute of Technology.

My main research areas are virtualization security and fuzz testing.

News:

• Apr 2022
  • [Vulnerability Disclosure] Linux Kernel v5.2+: x86/kvm: cmpxchg_gpte can write to pfns outside the userspace region openwall.com
• Nov 2021
  • [Vulnerability Disclosure] QEMU/SCSI: Global Buffer Overflow in Mode Pages Array .txt
  • [Vulnerability Disclosure] QEMU/SCSI: Heap Overflow in megasas .txt
• Oct 2021
  • [Vulnerability Disclosure] QEMU/NVMe: Arbitrary Memory Read .txt
  • [Bug Report] VirtualBox/SCSI: NULL Pointer Dereference .txt
• Aug 2021
  • [Vulnerability Disclosure] QEMU/EHCI: Reentry flaw leads to UAF .txt
• Jul 2021
  • [Chinese Note] 调研报告：并行与集成模糊测试 v0.2.0 .pdf
• Apr 2021
  • [Patch] SPICE/libspice-server: Fix nullptr dereference in red-parse-qxl.cpp freedesktop.org
• Mar 2021
  • [Chinese Note] QEMU/fuzz: 通过配比IO操作符权重以提升fork(2)质量 .pdf
• Feb 2021
  • [Vulnerability Disclosure] FFmpeg/libavcodec: Double free hevc context .txt
  • [Presentation] Practical Tutorial: A script kiddie’s fuzzing trip .pdf
• Jan 2021
  • [Bug Report] GNU Coreutils: Heap underflow when expr(1) mishandles unmatched \(...\) in regular expressions github.com
  • [Patch] QEMU/rtl8139: Mitigate DMA to MMIO regions while fuzzing .txt
• Dec 2020
  • [Fuzzing] QEMU/oss-fuzz: improve crash case minimization lists.nongnu.org
• Oct 2020
  • [Paper Review] USBFuzz: A Framework for Fuzzing USB Drivers by Device Emulation .txt
  • [Vulnerability Disclosure] QEMU/Slirp: OOB access while processing ARP/NCSI packets .txt
• Jan 2020
  • [Project] Hack-Linux-0.11: Ancient OS labs github.com
• Obsolete
  • [Chinese Blog] 博客园（主要记录了我的本科学习与生活） cnblogs.com
• Eternal
  • [Links] Some of my homies :) .txt
  • [Album] Life is fantastic! img/

Contact:

• [Social Media] Twitter | LinkedIn
• [Email] Qiuhao@sysec.org | Qiuhao.Li@outlook.com
• [PGP Key] 0x21E41177A8DE6F2A | .txt