Exploiting library vulnerability via migration-based automated test generation

Exploiting library vulnerability via migration-based automated test generation

In software development, developers extensively utilize third-party libraries to avoid implementing existing functionalities. When a new third-party library vulnerability is disclosed, project maintainers need to determine whether their projects are affected by the vulnerability, which requires deve...

Full description

Saved in:

Bibliographic Details
Main Authors:	CHEN, Zirui, HU, Xing, XIA, Xin, GAO, Yi, XU, Tongtong, LO, David, YANG, Xiaohu
Format:	text
Language:	English
Published:	Institutional Knowledge at Singapore Management University 2024
Subjects:	Library Vulnerabilities Search-based Test Generation Software Engineering
Online Access:	https://ink.library.smu.edu.sg/sis_research/9253 https://ink.library.smu.edu.sg/context/sis_research/article/10253/viewcontent/2312.09564v1.pdf
Tags:	Add Tag No Tags, Be the first to tag this record!
Institution:	Singapore Management University
Language:	English

Similar Items

Test mimicry to assess the exploitability of library vulnerabilities
by: KANG, Hong Jin, et al.
Published: (2022)

Regression tests to expose change interaction errors
by: Böhme, M., et al.
Published: (2014)

Search-driven string constraint solving for vulnerability detection
by: THOME, Julian, et al.
Published: (2017)

Automated identification of libraries from vulnerability data: can we do better?
by: HARYONO, Stefanus A., et al.
Published: (2022)

Finding real world software vulnerabilities using ChatGPT
by: Wong, Sean Chun Foh
Published: (2024)

CoLeFunDa: Explainable silent vulnerability fix identification
by: ZHOU, Jiayuan, et al.
Published: (2023)

An integrated approach for effective injection vulnerability analysis of web applications through security slicing and hybrid constraint solving
by: THOME, Julian, et al.
Published: (2018)

Cerebro: Context-aware adaptive fuzzing for effective vulnerability detection
by: LI, Yuekang, et al.
Published: (2019)

Adversarial specification mining
by: KANG, Hong Jin, et al.
Published: (2021)

VuRLE: Automatic vulnerability detection and repair by learning from examples
by: MA SIQI,, et al.
Published: (2017)

Automating user notice generation for smart contract functions
by: HU, Xing, et al.
Published: (2021)

Combining Software Metrics and Text Features for Vulnerable File Prediction
by: ZHANG, Yun, et al.
Published: (2015)

Automatic vulnerability detection and repair
by: MA, Siqi
Published: (2018)

CHRONOS: Time-aware zero-shot identification of libraries from vulnerability reports
by: LYU, Yunbo, et al.
Published: (2023)

Financial vulnerability and the reproduction of disadvantage in economic exchanges
by: HE, Tianyu, et al.
Published: (2020)

Enhancing code vulnerability detection via vulnerability-preserving data augmentation
by: LIU, Shangqing, et al.
Published: (2024)

MUT: Human-in-the-loop unit test migration
by: GAO, Yi, et al.
Published: (2024)

Exploiting Similarity Patterns to Build Generic Test Case Templates for Software Product Line Testing
by: SURIYA PRIYA R ASAITHAMBI
Published: (2014)

AdvSCanner : Generating adversarial smart contracts to exploit reentrancy vulnerabilities using LLM and static analysis
by: WU, Yin, et al.
Published: (2024)

VulCurator: a vulnerability-fixing commit detector
by: NGUYEN, Truong Giang, et al.
Published: (2022)

EXPLORING A TRANSDIAGNOSTIC COGNITIVE VULNERABILITY TO INTERNALIZING SYMPTOMS IN ADOLESCENTS
by: RUTH POH YI NING
Published: (2019)

Transaction log analysis of OPAC searches in an academic library: Basis for OPAC interface improvement
by: Fresnido, Ana Maria B., et al.
Published: (2019)

Finding RESTful API vulnerabilities using ChatGPT
by: Ho, Kenneth Jun Minn
Published: (2024)

Automated Regression Testing and Verification of Complex Code Changes
by: MARCEL BOEHME
Published: (2014)

Discoursing Disasters: Vulnerability and Gaps in Rationalities
by: Rodriguez, Agustin Martin G
Published: (2016)

Metabolic alterations and vulnerabilities in hepatocellular carcinoma
by: Tenen, Daniel G., et al.
Published: (2022)

Automated removal of cross site scripting vulnerabilities in web applications
by: SHAR, Lwin Khin, et al.
Published: (2011)

Simulation-based vulnerability assessment in transit systems with cascade failures
by: Chen, Hongyu, et al.
Published: (2022)

Security slicing for auditing XML, XPath, and SQL injection vulnerabilities
by: THOME, Julian, et al.
Published: (2015)

VULNERABILITY OF COMMUNITY GARDENS IN SINGAPORE: PLOUGHING THE GROUND
by: TAN YI XIN KEZIA
Published: (2018)

Multi-Granularity Detector for Vulnerability Fixes
by: NGUYEN, Truong Giang, et al.
Published: (2023)

Automated identification of libraries from vulnerability data
by: YANG, Chen, et al.
Published: (2020)

A study on the preference of library and information science students in the use of subject directories and search engines as search tools in finding e-journal articles in the internet
by: Del Mundo, Rafael Joseph C.
Published: (2006)

Recovering fitness gradients for interprocedural Boolean flags in search-based testing
by: LIN, Yun, et al.
Published: (2020)

Software composition analysis for vulnerability detection: An empirical study on Java projects
by: ZHAO, Lida, et al.
Published: (2023)

Vulnerability assessment of Tsunami affected tourism community: a case study of Koh Phi Phi, Thailand.
by: Kannapa Pongponrat
Published: (2015)

A proposed automated library system for the PSBA-Manila Library
by: Balbas, Yugosto A.
Published: (2022)

Dimension index method for climate change vulnerability assessment
by: Duong, Hong Son, et al.
Published: (2017)

Locating vulnerabilities in binaries via memory layout recovering
by: WANG, Haijun, et al.
Published: (2019)

Automated Library Recommendation
by: THUNG, Ferdian, et al.
Published: (2013)