Profile

Cover photo
421 followers|46,068 views
AboutPostsPhotosVideos

Stream

AddressSanitizer

Shared publicly  - 
 
Bugs found by +AddressSanitizer and MemorySanitizer in Chrome now cost even more! 
http://googlechromereleases.blogspot.com/2015/07/stable-channel-update_21.html
The Chrome team is delighted to announce the promotion of Chrome 44 to the stable channel for Windows, Mac and Linux. Chrome 44.0.2403.89 contains a number of fixes and improvements, including: A number of new apps/extensio...
1
Add a comment...

AddressSanitizer

Shared publicly  - 
 
More bugs found in Mozilla with the help of +AddressSanitizer 
https://www.mozilla.org/en-US/security/advisories/mfsa2015-16/
(There are more of those in the Feb 24 announcement)
2
Add a comment...

AddressSanitizer

Shared publicly  - 
 
Security content of iTunes 10.7 mentions AddressSanitizer 41 times. 
Great work by the Google Chrome Security Team and many independent researchers. 
https://support.apple.com/en-sa/HT5485
2
1
Konstantin Serebryany's profile photo
Add a comment...
In their circles
3 people
Have them in circles
421 people
Fumitoshi Ukai (鵜飼 文敏)'s profile photo
Vlad Shcherbina's profile photo
Sergei Nikulov's profile photo
boris supriaga's profile photo
Martin Ri's profile photo
Muhammad Nosirov's profile photo
Константин Сидоров's profile photo
Николай Арбузов's profile photo
Yu Yingshen's profile photo

AddressSanitizer

Shared publicly  - 
 
Did you know that +AddressSanitizer  works for native code on Android? 
http://source.android.com/devices/tech/debug/asan.html
1
Add a comment...

AddressSanitizer

Shared publicly  - 
 
+AddressSanitizer is now an official part of Apple's Xcode.
Woot!  
https://developer.apple.com/videos/wwdc/2015/?id=413
Back to All Videos. Advanced Debugging and the Address Sanitizer. Discover UI debugging and how to use advanced breakpoint actions to quickly explore and fix your app. Learn how the new Address Sanitizer feature finds buffer overflows, use-after-free errors, and other memory corruption bugs at ...
6
1
Paulo Matos's profile photoKonstantin Serebryany's profile photo
 
Why the 'woot?'
Add a comment...

AddressSanitizer

Shared publicly  - 
tl;dr With a reasonably simple fuzzing setup I was able to rediscover the Heartbleed bug. This uses state-of-the-art fuzzing and memory protection technology (american fuzzy lop and Address Sanitizer), but it doesn't require any prior knowledge about specifics of the Heartbleed bug or the TLS ...
17
3
Paweł Krawczyk's profile photoManu Sridharan's profile photoHenry Kleynhans's profile photoDeniz Adrian (zined)'s profile photo
 
Here's another one I've found using ASAN http://trac.nginx.org/nginx/ticket/732 not really security related but still a bug
Add a comment...
People
In their circles
3 people
Have them in circles
421 people
Fumitoshi Ukai (鵜飼 文敏)'s profile photo
Vlad Shcherbina's profile photo
Sergei Nikulov's profile photo
boris supriaga's profile photo
Martin Ri's profile photo
Muhammad Nosirov's profile photo
Константин Сидоров's profile photo
Николай Арбузов's profile photo
Yu Yingshen's profile photo
Story
Tagline
AddressSanitizer, a fast memory error detector