About

Jack Seonung Jang
[email protected]
@IFdLRx4At1WFm74
@[email protected]

Bio

🐛🦋🐞💥💣😎
I am a yet another logicbreaking junkie pursuing creativity and experimentation.

Interests

• Software Security
  • Finding 0day Vulnerability, Fuzzing, Software Exploitation
  • Low level software (Kernel, Hypervisor, SMM, ..)
  • Privilege Escalation, Memory Corruption, Logical Bug
• Mobile & Embedded Security
  • BaseBand, Wifi, TEE, SGX..

Work Experience

• STEALIEN (2018.02.02 ~ 2022.03.25)
  • Software Security Engineer (Exploit Development, Vulnerability Analysis, Pentesting)
• DATAFLOW SECURITY (2022.04 ~ )
  • Security Researcher (Exploit Development, Vulnerability Research)

Competition Team

• dcua (2016.06 ~ 2017.06)
• CodeRed (2013.04 ~ 2015.01)

Bug Report

Time-of-check Time-of-use Race Condition in Multimedia Framework (CVE-2022-25716)

Use-After-Free in DIAG (CVE-2022-25677)

Use-After-Free in DSP Services (CVE-2022-25666)

Use-After-Free in Synx Driver (CVE-2022-22095)

Use-After-Free in Automotive OS Platform Android (CVE-2022-22071)

Use-After-Free vulnerability in dsp_context_unload_graph function of DSP driver (CVE-2022-27834, SVE-2022-0107)

Improper input validation in DSP driver (CVE-2022-27833, SVE-2020-0085)

Use-After-Free vulnerability in sdp driver (CVE-2022-25822, SVE-2021-24397)

Use-After-Free bug in DSP Service (CVE-2021-35077)

Use-After-Free bug in NPU driver (CVE-2022-22265, SVE-2021-23365)

crypto: fmp: potential deadlock for fmp_run_AES_CBC_MCT

Win32k Information Disclosure Vulnerability (CVE-2019-1436)

Windows GDI Information Disclosure Vulnerability (CVE-2018-0750)

Windows GDI Information Disclosure Vulnerability (CVE-2017-11852)

Microsoft Browser Elevation of Privilege Vulnerability (CVE-2018-8357)

Microsoft Edge Security Feature Bypass Vulnerability (CVE-2018-8351)