← Back to context

Comment by tehwebguy

4 years ago

From the link, not sure if accurate:

> Those commits are part of the following research:

> https://github.com/QiushiWu/QiushiWu.github.io/blob/main/pap...

> They introduce kernel bugs on purpose. Yesterday, I took a look on 4 accepted patches from Aditya and 3 of them added various severity security "holes".

1 comment

tehwebguy

Reply
dash2  4 years ago

Interestingly, that paper states that they introduced 3 patches with bugs, but after acceptance, they immediately notified the maintainers and replaced the patches with correct, bug-free ones. So they claim the bugs never hit any git tree. They also state that their research had passed the university IRB. I don't know if that research relates to what they are doing now, though.