{"id":21075284,"url":"https://github.com/maxking/linux-vulns-extended","last_synced_at":"2026-04-01T22:06:46.319Z","repository":{"id":141775799,"uuid":"198087973","full_name":"maxking/linux-vulns-extended","owner":"maxking","description":"An extension to https://github.com/maxking/linux-vulnerabilities-10-years capturing more information as I find them.","archived":false,"fork":false,"pushed_at":"2019-07-21T17:58:18.000Z","size":1,"stargazers_count":0,"open_issues_count":0,"forks_count":0,"subscribers_count":0,"default_branch":"master","last_synced_at":"2025-12-29T23:25:34.244Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":null,"language":null,"has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/maxking.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2019-07-21T17:53:02.000Z","updated_at":"2019-07-21T17:58:19.000Z","dependencies_parsed_at":null,"dependency_job_id":"08c694df-6d22-488a-bf3f-9cc07d099e73","html_url":"https://github.com/maxking/linux-vulns-extended","commit_stats":null,"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"purl":"pkg:github/maxking/linux-vulns-extended","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/maxking%2Flinux-vulns-extended","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/maxking%2Flinux-vulns-extended/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/maxking%2Flinux-vulns-extended/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/maxking%2Flinux-vulns-extended/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/maxking","download_url":"https://codeload.github.com/maxking/linux-vulns-extended/tar.gz/refs/heads/master","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/maxking%2Flinux-vulns-extended/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":31018561,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-03-27T03:51:26.850Z","status":"ssl_error","status_checked_at":"2026-03-27T03:51:09.693Z","response_time":164,"last_error":"SSL_read: unexpected eof while reading","robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":false,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":[],"created_at":"2024-11-19T19:21:12.616Z","updated_at":"2026-03-27T04:20:12.875Z","avatar_url":"https://github.com/maxking.png","language":null,"funding_links":[],"categories":[],"sub_categories":[],"readme":"This repo captures the new vulnerabilities that I have studied, after I wrote\nmy MS thesis (which is [freely available][1])\n\n\nMemory Corruption\n=====================\n\nConcurrently Use-After-Free\n-------------------------------\n\nThis kind of vulnerability is caused by use-after-free(UAF) in code that\nexecutes concurrently, mostly drivers. This [research paper from USENIX\n2019][2] explores how these bugs can be detected with what they call \"summary\nbased lockset analysis\" (an advanced static analysis).\n\nThe basic summary is that they collect all possible functions that acquire a\nlock and pair them with other functions which can execute concurrently with\nthat function, from the same and from a different driver using static\nanalysis. Then they finally compare the functions in those pairs for\nuse-after-free bugs. Read the paper for more details.\n\n\n\n\n[1]: https://github.com/maxking/linux-vulnerabilities-10-years\n[2]: https://www.usenix.org/system/files/atc19-bai.pdf\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fmaxking%2Flinux-vulns-extended","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fmaxking%2Flinux-vulns-extended","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fmaxking%2Flinux-vulns-extended/lists"}