EarlyDLDetect: An Early Root-Cause Locator of Dangling Pointers and Memory Leaks

Katsuhiko Gondow; Yoshitaka Arahori

doi:10.1109/ACCESS.2024.3515133

IEEE Access (Jan 2024)

EarlyDLDetect: An Early Root-Cause Locator of Dangling Pointers and Memory Leaks

Katsuhiko Gondow,
Yoshitaka Arahori

Affiliations

Katsuhiko Gondow: Department of Computer Science, Institute of Science Tokyo, Tokyo, Japan
Yoshitaka Arahori: ORCiD; Department of Computer Science, Institute of Science Tokyo, Tokyo, Japan

DOI: https://doi.org/10.1109/ACCESS.2024.3515133
Journal volume & issue: Vol. 12
pp. 187877 – 187891

Abstract

Read online

Memory error detection tools like Address Sanitizer (ASAN) can detect the existence of dangling pointers and memory leaks, but cannot report their root causes, i.e., where they occur in the source code. For this reason, even with vulnerability reports and proof-of-concepts (PoC) using ASAN, it is often not easy to fix them. To mitigate this problem, we propose a novel detection tool EarlyDLDetect, which early reports the root causes of dangling pointers and memory leaks. In the empirical evaluation using our EarlyDLDetect implementation, EarlyDLDetect early detected 14 real-world vulnerabilities and provided the location of their root causes with acceptable runtime/memory overheads for debugging purposes. Three bug-fixing patches that we created based on EarlyDLDetect’s detection are adopted by the original open-source projects.

Published in IEEE Access

ISSN: 2169-3536 (Online)
Publisher: IEEE
Country of publisher: United States
LCC subjects: Technology: Electrical engineering. Electronics. Nuclear engineering
Website: https://ieeexplore.ieee.org/xpl/RecentIssue.jsp?punumber=6287639

About the journal

Abstract

Keywords