Alessandro Mantovani

icon indicating a website link https://elmanto.github.io/ icon indicating an email [email protected]

icon company Qualcomm icon location California icon location I am elmanto, I work in the security field at Qualcomm. I got my PhD at Eurecom. My interests include several areas of system security (program analysis, ..)

Results 4 issues of Alessandro Mantovani

Memory Corruptions

1 comment

[poc.tar.gz](https://github.com/vnmakarov/mir/files/7085569/poc.tar.gz) I found some memory corruptions while fuzzing c2m for research purposes. They mostly are heap BOFs, and SEGV. To reproduce you just need to compile mir with ASAN enabled...

Memory corruptions in Faust compiler

1 comment

I went on with some tests (similarly to #604), and I discovered overall 9 different vulnerabilities. You can reproduce by compiling with asan enabled. Here I attach a resume of...

AddressSanitizer: SEGV on unknown address 0x000000000000

4 comment

I found an input that results in a null pointer deref. In my current setup, I compiled faust with clang-13 and asan. To reproduce: ./faust -o /tmp/out where input is...

AddressSanitizer: SEGV on unknown address

Getting an ASAN SEGV report. To reproduce, I just compiled with asan enabled on x86 machine Linux. To reproduce: ./rcc -target=x86/linux file.c , where file.c the following piece of C...