Joseph Ravichandran

The world's first(?) kernel exploit for Vision Pro- on launch day!

Remote kernel UaF is not dead

2 new kernel CVEs, one remotely reachable! (look mom, no local code exec)

When your computer goes to sleep, what does it dream about?

Hack the Planet! I taught students fault injection, power analysis, and JTAG/ SWD in today's Secure Hardware Design lecture

CVE-2025-24118 is an absolutely crazy race condition I found in the macOS / XNU kernel. Safe memory reclamation, read-only objects, memcpy implementation details, and a race condition- oh my! jprx.io/cve-2025-24118

When the kernel is sus. CVE-2024-54507 is an XNU bug fixed in macOS 15.2 / iOS 18.2. Enjoy! jprx.io/cve-2024-54507

Writeup for CVE-2024-27815, a buffer overflow I reported in the XNU kernel is out! jprx.io/cve-2024-27815/

Happy to announce my SM thesis “Discovering Novel Microarchitectural Security Vulnerabilities in Modern Processors” was awarded the 2024 William A Martin Computer Science thesis award @MITEECS Check it out here: dspace.mit.edu/handle/1721.1/…

What if I’m not like the others? A broken mbuf, an overwrite— What if my Mac won’t recover? I’ll clean my code with TURPENTINE!

Uninitialized Data Access (UDA) CVE-2022-29968🤴💍 ("Lord Of The io_urings") Linux io_uring system call interface Joseph Ravichandran @0xjprx Michael Wang @mzwang499

Using Vision Pro in the classroom to show students how to set up fault injection and power analysis attacks in MIT Secure HW Design

This one's a fun one... f7160a6ad7d52f32d64b86cf3006c98a217954d80c3fc71a8f27595e227d0fa0

Received my first iOS + macOS kernel CVE! Fixed in XNU for iOS 17 and macOS Sonoma; a full writeup will be posted here soon.

Thanks so much for this opportunity!!

Dreams don't affect reality, but they may influence your actions. Turns out this applies to AMD CPUs too! After a long embargo, we can now present Inception, a new transient exec. attack that leaks data on all AMD Zen CPUs. With @wiknerj and @kavehrazavi. youtu.be/2wCjU8iJ9G4