khanhnt

After 3 months since the last blog, I found and pull the patches of 12 memory disclosure bugs: [NTOS:PS] Fix stack memory disclosure in PsGetContextThread: merged [Win32SS][USER] Fix stack memory disclosure in NtUserBuildPropList: merged [MOUNTMGR] Fix pool memory disclosure in QueryPointsFromMemory: merged [Win32SS][GDI] Fix pool memory disclosure in NtGdiGetGlyphOutline: merged [DRIVERS] Fix pool memory disclsoure in CreateDiskDeviceObject of disk driver: closed [NTGDI] Fix stack memory disclosure in NtGdiGetTextMetricsW: merged [NTOS:KE] Fix stack memory disclosure in KiInitializeUserApc: merged [NTOS:IO] Fix pool memory disclosure in IopQueueTargetDeviceEvent: merged [Win32SS][GDI] Fix pool memory disclosure in NtGdiGetOutlineTextMetricsInternalW: merged [WIN32SS][NTUSER] Fix uninitialized memory cause memory disclosure used for KeUserModeCallback: merged [FILESYSTEMS] Fix pool memory disclosure in filesystem drivers supporting FS_INFORMATION_CLASS.

Detect kernel information disclosure by Bochspwn-reloaded - GSoC 2020 - First week

by khanhnt

June 4, 2020

Introduction Hello, I am Nguyen Trung Khanh (@khanhnt) from Vietnam and I am one of the GSoC students of ReactOS. My project is running ReactOS on bochspwn-reloaded to list and fix all the bugs which were found by the tool. Additionally, I have a week to implement detection of uninitialized memory use. The first week Before GSoC, I did compile bochspwn-reloaded and run ReactOS on it so my work in the first week is pretty easy.

Detect kernel information disclosure by Bochspwn-reloaded - GSoC 2020 - Final report

Detect kernel information disclosure by Bochspwn-reloaded - GSoC 2020 - First week

Tags