김현우님의 소개 - 인프런 | 온라인 강의 플랫폼

리눅스 커널 해커 및 컨트리뷰터로 활동 중인 김현우 입니다. V4bel 이라는 닉네임을 사용하고 있습니다.

⦁ github : github.com/V4bel
⦁ e-mail : imv4bel@gmail.com

취약점 제보

⦁ CVE-2023-51779 (Linux kernel bluetooth socket Use-After-Free)
⦁  CVE-2023-51780 (Linux kernel atm socket Use-After-Free)
⦁  CVE-2023-51781 (Linux kernel appletalk socket Use-After-Free)
⦁  CVE-2023-51782 (Linux kernel rose socket Use-After-Free)
⦁  CVE-2023-32269 (Linux kernel NET/ROM socket Use-After-Free)
⦁ CVE-2022-41218 (Linux kernel DVB core Use-After-Free)
⦁  CVE-2022-45884 (Linux kernel DVB core Use-After-Free)
⦁  CVE-2022-45885 (Linux kernel DVB core Use-After-Free)
⦁  CVE-2022-45886 (Linux kernel DVB core Use-After-Free)
⦁  CVE-2022-45919 (Linux kernel DVB core Use-After-Free)
⦁  CVE-2022-40307 (Linux kernel Device driver Use-After-Free)
⦁ CVE-2022-41848 (Linux kernel Device driver Use-After-Free)
⦁ CVE-2022-41849 (Linux kernel Device driver Use-After-Free)
⦁ CVE-2022-41850 (Linux kernel Device driver Use-After-Free)
⦁  CVE-2022-44032 (Linux kernel Device driver Use-After-Free)
⦁  CVE-2022-44033 (Linux kernel Device driver Use-After-Free)
⦁  CVE-2022-44034 (Linux kernel Device driver Use-After-Free)
⦁  CVE-2022-45888 (Linux kernel Device driver Use-After-Free)
⦁ ...

리눅스 커널 기여

⦁ Bluetooth: af_bluetooth: Fix Use-After-Free in bt_sock_recvmsg
(github.com/torvalds/linux/commit/2e07e8348ea454615e268222ae3fc240421be768)

⦁ atm: Fix Use-After-Free in do_vcc_ioctl
(github.com/torvalds/linux/commit/24e90b9e34f9e039f56b5f25f6e6eb92cdd8f4b3)

⦁ appletalk: Fix Use-After-Free in atalk_ioctl
(github.com/torvalds/linux/commit/189ff16722ee36ced4d2a2469d4ab65a8fee4198)

⦁ net/rose: Fix Use-After-Free in rose_ioctl
(github.com/torvalds/linux/commit/810c38a369a0a0ce625b5c12169abce1dd9ccd53)

⦁ media: dvb-core: Fix use-after-free due to race at dvb_register_device()
(github.com/torvalds/linux/commit/627bb528b086b4136315c25d6a447a98ea9448d3)

⦁ af_key: Fix heap information leak
(github.com/torvalds/linux/commit/2f4796518315ab246638db8feebfcb494212e7ee)

⦁ netrom: Fix use-after-free caused by accept on already connected socket
(github.com/torvalds/linux/commit/611792920925fb088ddccbe2783c7f92fdfb6b64)

⦁ net/rose: Fix to not accept on connected socket
(github.com/torvalds/linux/commit/14caefcf9837a2be765a566005ad82cd0d2a429f)

⦁ net/x25: Fix to not accept on connected socket
(github.com/torvalds/linux/commit/f2b0b5210f67c56a3bcdf92ff665fb285d6e0067)

⦁ efi: capsule-loader: Fix use-after-free in efi_capsule_write
(github.com/torvalds/linux/commit/9cb636b5f6a8cc6d1b50809ec8f8d33ae0c84c95)

⦁ HID: roccat: Fix Use-After-Free in roccat_read
(github.com/torvalds/linux/commit/cacdb14b1c8d3804a3a7d31773bc7569837b71a4)

⦁ video: fbdev: smscufx: Fix use-after-free in ufx_ops_open()
(github.com/torvalds/linux/commit/5610bcfe8693c02e2e4c8b31427f1bdbdecc839c)

⦁ video: fbdev: smscufx: Fix several use-after-free bugs
(github.com/torvalds/linux/commit/cc67482c9e5f2c80d62f623bcc347c29f9f648e1)

⦁ char: xillybus: Fix trivial bug with mutex
(github.com/torvalds/linux/commit/c002f04c0bc79ec00d4beb75fb631d5bf37419bd)

⦁ bpf: Always use maximal size for copy_array()
(github.com/torvalds/linux/commit/45435d8da71f9f3e6860e6e6ea9667b6ec17ec64)

⦁ media: dvb-core: Fix UAF due to refcount races at releasing
(github.com/torvalds/linux/commit/fd3d91ab1c6ab0628fe642dd570b56302c30a792)

⦁ ...

CTF 이력

⦁ 2020 TokyoWesterns CTF 1st (D0G$)
⦁ 2020 ASIS CTF Quals 2nd (DefenitelyZer0)
⦁ 2020 TSG CTF 2nd (DefenitelyZer0)
⦁ 2020 Securinets CTF 2nd (Defenit)
⦁ 2020 Google CTF 18th (I use Bing)
⦁ ...

CTF 문제 출제

⦁ 2020 Defenit CTF (Input Test Driver)
⦁ HackCTF (Torn_PhoneBook)

소개

강의

수강평

게시글