QLGhostscript type confusion: Using variant analysis to find vulnerabilities
This post describes how to perform variant analysis with QL to catch missing type checking in Ghostscript, leading to the discovery of 3 new type confusion vulnerabilities (CVE-2018-19134, CVE-2018-19476, CVE-2018-19477)
January 22, 2019