Re: Reporting 1.2K crashes

To: debian-devel@lists.debian.org
Subject: Re: Reporting 1.2K crashes
From: Lucas Nussbaum <lucas@debian.org>
Date: Thu, 27 Jun 2013 12:54:50 +0200
Message-id: <[🔎] 20130627105450.GA27613@xanadu.blop.info>
In-reply-to: <[🔎] 51CC1538.1060306@debian.org>
References: <[🔎] CAF1AS2itHonB5KTnqNnX5xat4Bh7ytr0dG2txX6BSKzboVSMzA@mail.gmail.com> <[🔎] 51CC1538.1060306@debian.org>

Hi,

On 27/06/13 at 12:34 +0200, Wouter Verhelst wrote:
> On 25-06-13 07:28, Alexandre Rebert wrote:
> > Hi,
> > 
> > I am a security researcher at Carnegie Mellon University, and my team
> > has found thousands of crashes in binaries downloaded from debian
> > wheeze packages.
> 
> Out of interest, can you elaborate on the methodology you used in trying
> to find these crashes? I can't imagine you manually ran thousands of
> programs, watching the screen intently, so there must have been some
> other way...

The original mail said:
> We found the bugs using Mayhem [1], an automatic bug finding system
> that we've been developing in David Brumley's research lab for a
> couple of years.

[...]

> [1] http://users.ece.cmu.edu/~arebert/papers/mayhem-oakland-12.pdf

Lucas

Reply to:

References:
- Reporting 1.2K crashes
  - From: Alexandre Rebert <alexandre.rebert@gmail.com>
- Re: Reporting 1.2K crashes
  - From: Wouter Verhelst <wouter@debian.org>

Prev by Date: Re: Reporting 1.2K crashes
Next by Date: Re: Reporting 1.2K crashes
Previous by thread: Re: Reporting 1.2K crashes
Next by thread: Re: Reporting 1.2K crashes
Index(es):
- Date
- Thread