{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,2,7]],"date-time":"2026-02-07T19:55:43Z","timestamp":1770494143728,"version":"3.49.0"},"reference-count":28,"publisher":"Springer Science and Business Media LLC","issue":"2","license":[{"start":{"date-parts":[[2022,3,31]],"date-time":"2022-03-31T00:00:00Z","timestamp":1648684800000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.springer.com\/tdm"},{"start":{"date-parts":[[2022,3,31]],"date-time":"2022-03-31T00:00:00Z","timestamp":1648684800000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":["J. Comput. Sci. Technol."],"published-print":{"date-parts":[[2022,4]]},"DOI":"10.1007\/s11390-021-1600-9","type":"journal-article","created":{"date-parts":[[2022,4,25]],"date-time":"2022-04-25T08:04:12Z","timestamp":1650873852000},"page":"405-422","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":10,"title":["ovAFLow: Detecting Memory Corruption Bugs with Fuzzing-Based Taint Inference"],"prefix":"10.1007","volume":"37","author":[{"given":"Gen","family":"Zhang","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Peng-Fei","family":"Wang","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Tai","family":"Yue","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Xiang-Dong","family":"Kong","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Xu","family":"Zhou","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Kai","family":"Lu","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2022,3,31]]},"reference":[{"issue":"12","key":"1600_CR1","doi-asserted-by":"publisher","first-page":"32","DOI":"10.1145\/96267.96279","volume":"33","author":"BP Miller","year":"1990","unstructured":"Miller B P, Fredriksen L, So B. An empirical study of the reliability of UNIX utilities. Communications of the ACM, 1990, 33(12): 32-44. DOI: https:\/\/doi.org\/10.1145\/96267.96279.","journal-title":"Communications of the ACM"},{"issue":"5","key":"1600_CR2","doi-asserted-by":"publisher","first-page":"489","DOI":"10.1109\/TSE.2017.2785841","volume":"45","author":"M B\u00f6hme","year":"2017","unstructured":"B\u00f6hme M, Pham V T, Roychoudhury A. Coverage-based Greybox Fuzzing as Markov chain. IEEE Transactions on Software Engineering, 2017, 45(5): 489-506. DOI: https:\/\/doi.org\/10.1109\/TSE.2017.2785841.","journal-title":"IEEE Transactions on Software Engineering"},{"key":"1600_CR3","doi-asserted-by":"crossref","unstructured":"Rawat S, Jain V, Kumar A, Cojocar L, Giuffrida C, Bos H. VUzzer: Application-aware evolutionary fuzzing. In Proc. the 24th Annual Network and Distributed System Security Symposium, Feb. 26-Mar. 1, 2017. DOI: 10.14722\/ndss.2017.23404.","DOI":"10.14722\/ndss.2017.23404"},{"key":"1600_CR4","doi-asserted-by":"publisher","unstructured":"Chen P, Chen H. Angora: Efficient fuzzing by principled search. In Proc. the 2018 IEEE Symposium on Security and Privacy, May 2018, pp.711-725. DOI: https:\/\/doi.org\/10.1109\/SP.2018.00046.","DOI":"10.1109\/SP.2018.00046"},{"key":"1600_CR5","unstructured":"Yun I, Lee S, Xu M, Jang Y, Kim T. QSYM: A practical concolic execution engine tailored for hybrid fuzzing. In Proc. the 2018 USENIX Security Symposium, Aug. 2018, pp.745-761."},{"key":"1600_CR6","doi-asserted-by":"crossref","unstructured":"Lemieux C, Sen K. FairFuzz: A targeted mutation strategy for increasing greybox fuzz testing coverage. In Proc. the 2018 ACM\/IEEE International Conference on Automated Software Engineering, Sept. 2018, pp.475-485. DOI: 10.1145\/3238147.3238176.","DOI":"10.1145\/3238147.3238176"},{"key":"1600_CR7","unstructured":"Li Y, Ji S, Lv C, Chen Y, Chen J, Gu Q, Wu C. VFuzz: Vulnerability-oriented evolutionary fuzzing. arXiv:1-901.01142, 2019. https:\/\/arxiv.org\/abs\/1901.01142, Sept. 2021."},{"key":"1600_CR8","doi-asserted-by":"publisher","unstructured":"Wang Y, Jia X, Liu Y, Zeng K, Bao T, Wu D, Su P. Not all coverage measurements are equal: Fuzzing by coverage accounting for input prioritization. In Proc. the 2020 Network and Distributed System Security Symposium, Feb. 2020. DOI: https:\/\/doi.org\/10.14722\/ndss.2020.24422.","DOI":"10.14722\/ndss.2020.24422"},{"key":"1600_CR9","doi-asserted-by":"publisher","unstructured":"Jain V, Rawat S, Giuffrida C, Bos H. TIFF: Using input type inference to improve fuzzing. In Proc. the 2018 Annual Computer Security Applications Conference, Dec. 2018, pp.505-517. DOI: https:\/\/doi.org\/10.1145\/3274694.3274746.","DOI":"10.1145\/3274694.3274746"},{"key":"1600_CR10","doi-asserted-by":"crossref","unstructured":"Coppik N, Schwahn O, Suri N. MemFuzz: Using memory accesses to guide fuzzing. In Proc. the 2019 IEEE Conference on Software Testing, Validation and Verification, Apr. 2019, pp.48-58. DOI: 10.1109\/ICST.2019.00015.","DOI":"10.1109\/ICST.2019.00015"},{"key":"1600_CR11","doi-asserted-by":"publisher","unstructured":"Gan S, Zhang C, Qin X, Tu X, Li K, Pei Z, Chen Z. CollAFL: Path sensitive fuzzing. In Proc. the 2018 IEEE Symposium on Security and Privacy, May 2018, pp.679-696. DOI: https:\/\/doi.org\/10.1109\/SP.2018.00040.","DOI":"10.1109\/SP.2018.00040"},{"key":"1600_CR12","doi-asserted-by":"crossref","unstructured":"Zhou C, Wang M, Liang J, Liu Z, Jiang Y. Zeror: Speed up fuzzing with coverage-sensitive tracing and scheduling. In Proc. the 2020 IEEE\/ACM International Conference on Automated Software Engineering, Sept. 2020, pp.858-870. DOI: 10.1145\/3324884.3416572.","DOI":"10.1145\/3324884.3416572"},{"key":"1600_CR13","doi-asserted-by":"publisher","unstructured":"Nagy S, Hicks M. Full-speed fuzzing: Reducing fuzzing overhead through coverage-guided tracing. In Proc. the 2019 IEEE Symposium on Security and Privacy, May 2019, pp.787-802. DOI: https:\/\/doi.org\/10.1109\/SP.2019.00069.","DOI":"10.1109\/SP.2019.00069"},{"key":"1600_CR14","doi-asserted-by":"publisher","unstructured":"Zhang C, Dong W Y, Ren Y Z. INSTRCR: Lightweight instrumentation optimization based on coverage-guided fuzz testing. In Proc. the 2nd IEEE International Conference on Computer and Communication Engineering Technology, Aug. 2019, pp.74-78. DOI: https:\/\/doi.org\/10.1109\/CCET48361.2019.8989335.","DOI":"10.1109\/CCET48361.2019.8989335"},{"key":"1600_CR15","unstructured":"Jia X, Zhang C, Su P, Yang Y, Huang H, Feng D. Towards efficient heap overow discovery. In Proc. the 2017 USENIX Security Symposium, Aug. 2017, pp.989-1006."},{"key":"1600_CR16","doi-asserted-by":"publisher","unstructured":"Qin F, Lu S, Zhou, Y. SafeMem: Exploiting ECC-memory for detecting memory leaks and memory corruption during production runs. In Proc. the 2005 International Symposium on High-Performance Computer Architecture, Feb. 2005, pp.291-302. DOI: https:\/\/doi.org\/10.1109\/HPCA.2005.29.","DOI":"10.1109\/HPCA.2005.29"},{"key":"1600_CR17","unstructured":"Gan S, Zhang C, Chen P, Zhao B, Qin X, Wu D, Chen Z. GREYONE: Data ow sensitive fuzzing. In Proc. the 2020 U SENIX Security Symposium, Aug. 2020, pp.2577-2594."},{"key":"1600_CR18","doi-asserted-by":"publisher","unstructured":"You W, Wang X, Ma S, Huang J, Zhang X, Wang X, Liang B. ProFuzzer: On-the-y input type probing for better zeroday vulnerability discovery. In Proc. the 2019 IEEE Symposium on Security and Privacy, May 2019, pp.769-786. DOI: https:\/\/doi.org\/10.1109\/SP.2019.00057.","DOI":"10.1109\/SP.2019.00057"},{"key":"1600_CR19","doi-asserted-by":"publisher","unstructured":"You W, Liu X, Ma S, Perry D, Zhang X, Liang B. SLF: Fuzzing without valid seed inputs. In Proc. the 2019 IEEE\/ACM International Conference on Software Engineering, May 2019, pp.712-723. DOI: https:\/\/doi.org\/10.1109\/ICSE.2019.00080.","DOI":"10.1109\/ICSE.2019.00080"},{"key":"1600_CR20","doi-asserted-by":"publisher","unstructured":"Dolan-Gavitt B, Hulin P, Kirda E, Leek T, Mambretti A, Robertson W, Whelan R. LAVA: Large-scale automated vulnerability addition. In Proc. the 2016 IEEE Symposium on Security and Privacy, May 2016, pp.110-121. DOI: https:\/\/doi.org\/10.1109\/SP.2016.15.","DOI":"10.1109\/SP.2016.15"},{"key":"1600_CR21","unstructured":"Aho A V, Sethi R, Ullman J D. Compilers, Principles, Techniques, and Tools (1st edition). Addison Wesley, 1986."},{"key":"1600_CR22","doi-asserted-by":"publisher","first-page":"37302","DOI":"10.1109\/ACCESS.2018.2851237","volume":"6","author":"G Zhang","year":"2018","unstructured":"Zhang G, Zhou X, Luo Y, Wu X, Min E. PTfuzz: Guided fuzzing with processor trace feedback. IEEE Access, 2018, 6: 37302-37313. DOI: https:\/\/doi.org\/10.1109\/ACCESS.2018.2851237.","journal-title":"IEEE Access"},{"key":"1600_CR23","unstructured":"Lyu C, Ji S, Zhang C, Li Y, Lee W H, Song Y, Beyah R. MOPT: Optimized mutation scheduling for fuzzers. In Proc. the 2019 USENIX Security Symposium, Aug. 2019, pp.1949-1966."},{"key":"1600_CR24","unstructured":"Yue T, Wang P, Tang Y, Wang E, Yu B, Lu K, Zhou X. EcoFuzz: Adaptive energy-saving greybox fuzzing as a variant of the adversarial multi-armed bandit. In Proc. the 2020 USENIX Security Symposium, Aug. 2020, pp.2307-2324."},{"key":"1600_CR25","unstructured":"Serebryany K, Bruening D, Potapenko A, Vyukov D. AddressSanitizer: A fast address sanity checker. In Proc. the 2012 USENIX Security Symposium, Aug. 2012, pp.309-318."},{"key":"1600_CR26","doi-asserted-by":"crossref","unstructured":"Wen C, Wang H, Li Y, Qin S, Liu Y, Xu Z, Liu T. MemLock: Memory usage guided fuzzing. In Proc. the 2020 ACM\/IEEE International Conference on Software Engineering, July 2020, pp.765-777. DOI: 10.1145\/3377811.3380396.","DOI":"10.1145\/3377811.3380396"},{"key":"1600_CR27","doi-asserted-by":"crossref","unstructured":"Wang H, Xie X, Li Y,Wen C, Li Y, Liu Y, Sui Y. Typestateguided fuzzer for discovering use-after-free vulnerabilities. In Proc. the 2020 ACM\/IEEE International Conference on Software Engineering, July 2020, pp.999-1010. DOI: 10.1145\/3377811.3380386.","DOI":"10.1145\/3377811.3380386"},{"key":"1600_CR28","doi-asserted-by":"crossref","unstructured":"B\u00f6hme M, Pham V T, Nguyen M D, Roychoudhury A. Directed Greybox Fuzzing. In Proc. the 2017 ACM SIGSAC Conference on Computer and Communications Security, Oct. 30-Nov. 03, 2017, pp.2329-2344. DOI: [29]1145\/3133956.3134020.","DOI":"10.1145\/3133956.3134020"}],"container-title":["Journal of Computer Science and Technology"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/s11390-021-1600-9.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/link.springer.com\/article\/10.1007\/s11390-021-1600-9\/fulltext.html","content-type":"text\/html","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/s11390-021-1600-9.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2022,4,25]],"date-time":"2022-04-25T08:36:02Z","timestamp":1650875762000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/s11390-021-1600-9"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2022,3,31]]},"references-count":28,"journal-issue":{"issue":"2","published-print":{"date-parts":[[2022,4]]}},"alternative-id":["1600"],"URL":"https:\/\/doi.org\/10.1007\/s11390-021-1600-9","relation":{},"ISSN":["1000-9000","1860-4749"],"issn-type":[{"value":"1000-9000","type":"print"},{"value":"1860-4749","type":"electronic"}],"subject":[],"published":{"date-parts":[[2022,3,31]]},"assertion":[{"value":"21 May 2021","order":1,"name":"received","label":"Received","group":{"name":"ArticleHistory","label":"Article History"}},{"value":"15 November 2021","order":2,"name":"accepted","label":"Accepted","group":{"name":"ArticleHistory","label":"Article History"}},{"value":"31 March 2022","order":3,"name":"first_online","label":"First Online","group":{"name":"ArticleHistory","label":"Article History"}}]}}