{"id":"https://openalex.org/W7163376615","doi":"https://doi.org/10.4230/oasics.aeic.2026.2","title":"Discovering and Repairing Flaws in C Binaries Without Requiring Codebase and Instrumentation","display_name":"Discovering and Repairing Flaws in C Binaries Without Requiring Codebase and Instrumentation","publication_year":2026,"publication_date":"2026-01-01","ids":{"openalex":"https://openalex.org/W7163376615","doi":"https://doi.org/10.4230/oasics.aeic.2026.2"},"language":"en","primary_location":{"id":"pmh:doi:10.4230/oasics.aeic.2026.2","is_oa":true,"landing_page_url":"https://www.qemu.org/","pdf_url":null,"source":{"id":"https://openalex.org/S4406922384","display_name":"Open MIND","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":null,"raw_type":"ConferencePaper"},"type":"article","indexed_in":["datacite"],"open_access":{"is_oa":true,"oa_status":"green","oa_url":"https://www.qemu.org/","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5137717105","display_name":"Diogo Ferreira","orcid":"https://orcid.org/0000-0002-0646-3351"},"institutions":[{"id":"https://openalex.org/I141596103","display_name":"University of Lisbon","ror":"https://ror.org/01c27hj86","country_code":"PT","type":"education","lineage":["https://openalex.org/I141596103"]}],"countries":["PT"],"is_corresponding":false,"raw_author_name":"Ferreira, Diogo","raw_affiliation_strings":["LASIGE, Department of Informatics, Faculty of Sciences of University of Lisboa, Portugal"],"raw_orcid":"https://orcid.org/0000-0002-0646-3351","affiliations":[{"raw_affiliation_string":"LASIGE, Department of Informatics, Faculty of Sciences of University of Lisboa, Portugal","institution_ids":["https://openalex.org/I141596103"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5058688939","display_name":"Ib\u00e9ria Medeiros","orcid":"https://orcid.org/0000-0003-4478-8680"},"institutions":[{"id":"https://openalex.org/I141596103","display_name":"University of Lisbon","ror":"https://ror.org/01c27hj86","country_code":"PT","type":"education","lineage":["https://openalex.org/I141596103"]}],"countries":["PT"],"is_corresponding":false,"raw_author_name":"Medeiros, Ib\u00e9ria","raw_affiliation_strings":["LASIGE, Department of Informatics, Faculty of Sciences of University of Lisboa, Portugal"],"raw_orcid":"https://orcid.org/0000-0003-4478-8680","affiliations":[{"raw_affiliation_string":"LASIGE, Department of Informatics, Faculty of Sciences of University of Lisboa, Portugal","institution_ids":["https://openalex.org/I141596103"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":2,"corresponding_author_ids":[],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":0.0,"has_fulltext":true,"cited_by_count":0,"citation_normalized_percentile":{"value":0.9081247,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":null,"biblio":{"volume":null,"issue":null,"first_page":null,"last_page":null},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.76910001039505,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11424","display_name":"Security and Verification in Computing","score":0.76910001039505,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10743","display_name":"Software Testing and Debugging Techniques","score":0.08950000256299973,"subfield":{"id":"https://openalex.org/subfields/1712","display_name":"Software"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11005","display_name":"Radiation Effects in Electronics","score":0.027899999171495438,"subfield":{"id":"https://openalex.org/subfields/2208","display_name":"Electrical and Electronic Engineering"},"field":{"id":"https://openalex.org/fields/22","display_name":"Engineering"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/codebase","display_name":"Codebase","score":0.8237000107765198},{"id":"https://openalex.org/keywords/binary-number","display_name":"Binary number","score":0.5720999836921692},{"id":"https://openalex.org/keywords/source-code","display_name":"Source code","score":0.5587000250816345},{"id":"https://openalex.org/keywords/rewriting","display_name":"Rewriting","score":0.5242999792098999},{"id":"https://openalex.org/keywords/binary-code","display_name":"Binary code","score":0.5231999754905701},{"id":"https://openalex.org/keywords/software","display_name":"Software","score":0.5121999979019165},{"id":"https://openalex.org/keywords/reverse-engineering","display_name":"Reverse engineering","score":0.5099999904632568},{"id":"https://openalex.org/keywords/instrumentation","display_name":"Instrumentation (computer programming)","score":0.48010000586509705},{"id":"https://openalex.org/keywords/code","display_name":"Code (set theory)","score":0.447299987077713},{"id":"https://openalex.org/keywords/static-analysis","display_name":"Static analysis","score":0.4390999972820282}],"concepts":[{"id":"https://openalex.org/C51929080","wikidata":"https://www.wikidata.org/wiki/Q2425187","display_name":"Codebase","level":3,"score":0.8237000107765198},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7378000020980835},{"id":"https://openalex.org/C48372109","wikidata":"https://www.wikidata.org/wiki/Q3913","display_name":"Binary number","level":2,"score":0.5720999836921692},{"id":"https://openalex.org/C43126263","wikidata":"https://www.wikidata.org/wiki/Q128751","display_name":"Source code","level":2,"score":0.5587000250816345},{"id":"https://openalex.org/C154690210","wikidata":"https://www.wikidata.org/wiki/Q1668499","display_name":"Rewriting","level":2,"score":0.5242999792098999},{"id":"https://openalex.org/C63435697","wikidata":"https://www.wikidata.org/wiki/Q864135","display_name":"Binary code","level":3,"score":0.5231999754905701},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.5121999979019165},{"id":"https://openalex.org/C207850805","wikidata":"https://www.wikidata.org/wiki/Q269608","display_name":"Reverse engineering","level":2,"score":0.5099999904632568},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.49000000953674316},{"id":"https://openalex.org/C118530786","wikidata":"https://www.wikidata.org/wiki/Q1134732","display_name":"Instrumentation (computer programming)","level":2,"score":0.48010000586509705},{"id":"https://openalex.org/C2776760102","wikidata":"https://www.wikidata.org/wiki/Q5139990","display_name":"Code (set theory)","level":3,"score":0.447299987077713},{"id":"https://openalex.org/C97686452","wikidata":"https://www.wikidata.org/wiki/Q7604153","display_name":"Static analysis","level":2,"score":0.4390999972820282},{"id":"https://openalex.org/C2779190172","wikidata":"https://www.wikidata.org/wiki/Q4913888","display_name":"Binary data","level":3,"score":0.420199990272522},{"id":"https://openalex.org/C137287247","wikidata":"https://www.wikidata.org/wiki/Q1329550","display_name":"Static program analysis","level":4,"score":0.37369999289512634},{"id":"https://openalex.org/C47434764","wikidata":"https://www.wikidata.org/wiki/Q1770035","display_name":"Dead code","level":5,"score":0.36820000410079956},{"id":"https://openalex.org/C40842320","wikidata":"https://www.wikidata.org/wiki/Q19423","display_name":"Buffer overflow","level":2,"score":0.3529999852180481},{"id":"https://openalex.org/C1009929","wikidata":"https://www.wikidata.org/wiki/Q179550","display_name":"Software bug","level":3,"score":0.33649998903274536},{"id":"https://openalex.org/C149091818","wikidata":"https://www.wikidata.org/wiki/Q2429814","display_name":"Software system","level":3,"score":0.32359999418258667},{"id":"https://openalex.org/C160191386","wikidata":"https://www.wikidata.org/wiki/Q868299","display_name":"Control flow","level":2,"score":0.32100000977516174},{"id":"https://openalex.org/C2779639559","wikidata":"https://www.wikidata.org/wiki/Q7661178","display_name":"Symbolic execution","level":3,"score":0.31949999928474426},{"id":"https://openalex.org/C128942645","wikidata":"https://www.wikidata.org/wiki/Q1568346","display_name":"Test case","level":3,"score":0.30239999294281006},{"id":"https://openalex.org/C168065819","wikidata":"https://www.wikidata.org/wiki/Q845566","display_name":"Debugging","level":2,"score":0.29989999532699585},{"id":"https://openalex.org/C115903868","wikidata":"https://www.wikidata.org/wiki/Q80993","display_name":"Software engineering","level":1,"score":0.296099990606308},{"id":"https://openalex.org/C149635348","wikidata":"https://www.wikidata.org/wiki/Q193040","display_name":"Embedded system","level":1,"score":0.28859999775886536},{"id":"https://openalex.org/C120314980","wikidata":"https://www.wikidata.org/wiki/Q180634","display_name":"Distributed computing","level":1,"score":0.2856999933719635},{"id":"https://openalex.org/C168167062","wikidata":"https://www.wikidata.org/wiki/Q1117970","display_name":"Component (thermodynamics)","level":2,"score":0.2750000059604645},{"id":"https://openalex.org/C53942775","wikidata":"https://www.wikidata.org/wiki/Q1211721","display_name":"Code coverage","level":3,"score":0.26989999413490295},{"id":"https://openalex.org/C117447612","wikidata":"https://www.wikidata.org/wiki/Q1412670","display_name":"Software quality","level":4,"score":0.26989999413490295},{"id":"https://openalex.org/C162319229","wikidata":"https://www.wikidata.org/wiki/Q175263","display_name":"Data structure","level":2,"score":0.26759999990463257},{"id":"https://openalex.org/C50831359","wikidata":"https://www.wikidata.org/wiki/Q165436","display_name":"Assembly language","level":3,"score":0.2662000060081482},{"id":"https://openalex.org/C88468194","wikidata":"https://www.wikidata.org/wiki/Q1172416","display_name":"Data-flow analysis","level":3,"score":0.26570001244544983},{"id":"https://openalex.org/C2776436953","wikidata":"https://www.wikidata.org/wiki/Q5163215","display_name":"Consistency (knowledge bases)","level":2,"score":0.26010000705718994},{"id":"https://openalex.org/C79403827","wikidata":"https://www.wikidata.org/wiki/Q3988","display_name":"Real-time computing","level":1,"score":0.258899986743927},{"id":"https://openalex.org/C105446022","wikidata":"https://www.wikidata.org/wiki/Q445962","display_name":"Legacy system","level":3,"score":0.257099986076355},{"id":"https://openalex.org/C193702766","wikidata":"https://www.wikidata.org/wiki/Q1414548","display_name":"Concurrency","level":2,"score":0.2517000138759613}],"mesh":[],"locations_count":3,"locations":[{"id":"pmh:doi:10.4230/oasics.aeic.2026.2","is_oa":true,"landing_page_url":"https://www.qemu.org/","pdf_url":null,"source":{"id":"https://openalex.org/S4406922384","display_name":"Open MIND","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":null,"raw_type":"ConferencePaper"},{"id":"pmh:oai:drops-oai.dagstuhl.de:25920","is_oa":true,"landing_page_url":"https://drops.dagstuhl.de/entities/document/10.4230/OASIcs.AEiC.2026.2","pdf_url":null,"source":{"id":"https://openalex.org/S4377196569","display_name":"DROPS (Schloss Dagstuhl \u2013 Leibniz Center for Informatics)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I2799853480","host_organization_name":"Schloss Dagstuhl \u2013 Leibniz Center for Informatics","host_organization_lineage":["https://openalex.org/I2799853480"],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":null,"raw_type":"publishedVersion"},{"id":"doi:10.4230/oasics.aeic.2026.2","is_oa":true,"landing_page_url":"https://doi.org/10.4230/oasics.aeic.2026.2","pdf_url":null,"source":{"id":"https://openalex.org/S7407052059","display_name":"Dagstuhl Research Online Publication Server","issn_l":null,"issn":[],"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":null,"is_accepted":false,"is_published":null,"raw_source_name":null,"raw_type":""}],"best_oa_location":{"id":"pmh:doi:10.4230/oasics.aeic.2026.2","is_oa":true,"landing_page_url":"https://www.qemu.org/","pdf_url":null,"source":{"id":"https://openalex.org/S4406922384","display_name":"Open MIND","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":null,"raw_type":"ConferencePaper"},"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":0,"referenced_works":[],"related_works":[],"abstract_inverted_index":{"Industrial":[0],"and":[1,60,92,115,141,162,169,176,202],"embedded":[2],"software":[3,69],"systems":[4,18,70],"frequently":[5],"integrate":[6],"various":[7],"third-party":[8,207],"components":[9],"sourced":[10],"from":[11,53],"diverse":[12],"providers":[13],"into":[14],"their":[15,132,204],"codebases.":[16],"These":[17],"are":[19,103],"commonly":[20],"developed":[21],"in":[22,63,179],"C,":[23],"a":[24,83,108,155],"language":[25],"known":[26],"for":[27,195],"its":[28],"lack":[29],"of":[30,96,110],"variable":[31],"bounds":[32],"checking,":[33],"making":[34],"it":[35],"vulnerable":[36,54,59],"to":[37,87,200,211,216],"Buffer":[38],"Overflows":[39],"(BOs),":[40],"which,":[41],"when":[42],"exploited,":[43],"can":[44,127],"cause":[45,134],"severe":[46],"damage.":[47],"Consequently,":[48],"the":[49,64,94,147,159],"binary":[50,75,84,148,157,180,217],"code":[51,76,149],"resulting":[52],"C":[55],"programs":[56,181],"is":[57,71,77,191],"also":[58],"remains":[61],"so":[62],"final":[65],"products.":[66],"Fixing":[67],"these":[68],"challenging":[72],"because":[73],"only":[74,215],"available.":[78],"This":[79],"paper":[80],"presents":[81],"PatchBin,":[82],"patching":[85],"tool":[86],"automatically":[88],"fix":[89,203],"BO":[90,178],"vulnerabilities":[91],"validate":[93],"effectiveness":[95],"fixes":[97,177],"while":[98],"ensuring":[99],"no":[100],"new":[101,156,163,184],"flaws":[102,161],"introduced.":[104],"The":[105,186],"approach":[106],"involves":[107],"combination":[109],"fuzzing,":[111],"reverse":[112,137],"static":[113,116],"analysis":[114],"rewriting":[117,146],"techniques":[118],"to,":[119],"respectively,":[120],"(i)":[121],"identify":[122],"possible":[123],"malicious":[124],"inputs":[125],"that":[126,173,189],"trigger":[128],"BOs,":[129],"(ii)":[130],"find":[131],"root":[133],"by":[135,145],"employing":[136],"data":[138],"flow":[139],"analysis,":[140],"(iii)":[142],"remove":[143],"them":[144,199],"with":[150,167],"effective":[151],"validation,":[152],"thus":[153],"generating":[154],"without":[158,182,209],"original":[160],"ones.":[164],"Experimental":[165],"evaluations":[166],"synthetic":[168],"real-world":[170],"applications":[171],"demonstrated":[172],"PatchBin":[174,190],"detects":[175],"introducing":[183],"vulnerabilities.":[185],"results":[187],"showed":[188],"an":[192],"important":[193],"aid":[194],"industrial":[196],"partners,":[197],"enabling":[198],"test":[201],"products,":[205],"including":[206],"components,":[208],"access":[210],"source":[212],"code,":[213],"but":[214],"code.":[218]},"counts_by_year":[],"updated_date":"2026-06-11T09:08:48.828518","created_date":"2026-06-04T00:00:00"}