{"record_type":"pith_number_record","schema_url":"https://pith.science/schemas/pith-number/v1.json","pith_number":"pith:2026:H2YNUBZAY7CBFO4MCEFZVI4T3V","short_pith_number":"pith:H2YNUBZA","schema_version":"1.0","canonical_sha256":"3eb0da0720c7c412bb8c110b9aa393dd53e502e9ff20d42f752fc7da894df3b5","source":{"kind":"arxiv","id":"2605.26665","version":1},"attestation_state":"computed","paper":{"title":"Resolving the Correct Library: A Loader-Level Defense Solution Against Shared Object Hijacking","license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","headline":"","cross_cats":[],"primary_cat":"cs.CR","authors_text":"Can Ozkan, Dave Singelee","submitted_at":"2026-05-26T07:54:24Z","abstract_excerpt":"Shared library hijacking attacks in the Linux ecosystem, including embedded Linux, are a significant concern. It fundamentally exploits the dynamic linker's library-resolution semantics rather than modifying trusted libraries directly. Prior research has extensively analyzed attack vectors exploiting environment variables, embedded search paths, and dynamic loader internals, demonstrating that hijacking is rooted in fundamental loader behavior rather than isolated misconfigurations. Existing defenses either harden or replace the loader, enforce control-flow integrity after libraries are loaded"},"verification_status":{"content_addressed":true,"pith_receipt":true,"author_attested":false,"weak_author_claims":0,"strong_author_claims":0,"externally_anchored":false,"storage_verified":false,"citation_signatures":0,"replication_records":0,"graph_snapshot":true,"references_resolved":false,"formal_links_present":false},"canonical_record":{"source":{"id":"2605.26665","kind":"arxiv","version":1},"metadata":{"license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","primary_cat":"cs.CR","submitted_at":"2026-05-26T07:54:24Z","cross_cats_sorted":[],"title_canon_sha256":"fe28ed52ab879ac4f3f08c76d48b7b34e19386fa06453b05bcea6aae4fee7a71","abstract_canon_sha256":"ede808f4d48e6e9e4d939b87dfa954bc6dd9c73446bfa1b3db44d1683828b350"},"schema_version":"1.0"},"receipt":{"kind":"pith_receipt","key_id":"pith-v1-2026-05","algorithm":"ed25519","signed_at":"2026-05-27T01:06:04.710278Z","signature_b64":"SfQUseEOt8oYkRc8sZyeoktKM9/l0T4A8+v/CskTl1g/D6TB2JAayQ6nzS9rOWWZAsXm+u+ZGPQTM7iXacJMBA==","signed_message":"canonical_sha256_bytes","builder_version":"pith-number-builder-2026-05-17-v1","receipt_version":"0.3","canonical_sha256":"3eb0da0720c7c412bb8c110b9aa393dd53e502e9ff20d42f752fc7da894df3b5","last_reissued_at":"2026-05-27T01:06:04.709542Z","signature_status":"signed_v1","first_computed_at":"2026-05-27T01:06:04.709542Z","public_key_fingerprint":"8d4b5ee74e4693bcd1df2446408b0d54"},"graph_snapshot":{"paper":{"title":"Resolving the Correct Library: A Loader-Level Defense Solution Against Shared Object Hijacking","license":"http://arxiv.org/licenses/nonexclusive-distrib/1.0/","headline":"","cross_cats":[],"primary_cat":"cs.CR","authors_text":"Can Ozkan, Dave Singelee","submitted_at":"2026-05-26T07:54:24Z","abstract_excerpt":"Shared library hijacking attacks in the Linux ecosystem, including embedded Linux, are a significant concern. It fundamentally exploits the dynamic linker's library-resolution semantics rather than modifying trusted libraries directly. Prior research has extensively analyzed attack vectors exploiting environment variables, embedded search paths, and dynamic loader internals, demonstrating that hijacking is rooted in fundamental loader behavior rather than isolated misconfigurations. Existing defenses either harden or replace the loader, enforce control-flow integrity after libraries are loaded"},"claims":{"count":0,"items":[],"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"source":{"id":"2605.26665","kind":"arxiv","version":1},"verdict":{"id":null,"model_set":{},"created_at":null,"strongest_claim":"","one_line_summary":"","pipeline_version":null,"weakest_assumption":"","pith_extraction_headline":""},"integrity":{"clean":true,"summary":{"advisory":0,"critical":0,"by_detector":{},"informational":0},"endpoint":"/pith/2605.26665/integrity.json","findings":[],"available":true,"detectors_run":[],"snapshot_sha256":"c28c3603d3b5d939e8dc4c7e95fa8dfce3d595e45f758748cecf8e644a296938"},"references":{"count":0,"sample":[],"resolved_work":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57","internal_anchors":0},"formal_canon":{"evidence_count":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"author_claims":{"count":0,"strong_count":0,"snapshot_sha256":"258153158e38e3291e3d48162225fcdb2d5a3ed65a07baac614ab91432fd4f57"},"builder_version":"pith-number-builder-2026-05-17-v1"},"aliases":[{"alias_kind":"arxiv","alias_value":"2605.26665","created_at":"2026-05-27T01:06:04.709668+00:00"},{"alias_kind":"arxiv_version","alias_value":"2605.26665v1","created_at":"2026-05-27T01:06:04.709668+00:00"},{"alias_kind":"doi","alias_value":"10.48550/arxiv.2605.26665","created_at":"2026-05-27T01:06:04.709668+00:00"},{"alias_kind":"pith_short_12","alias_value":"H2YNUBZAY7CB","created_at":"2026-05-27T01:06:04.709668+00:00"},{"alias_kind":"pith_short_16","alias_value":"H2YNUBZAY7CBFO4M","created_at":"2026-05-27T01:06:04.709668+00:00"},{"alias_kind":"pith_short_8","alias_value":"H2YNUBZA","created_at":"2026-05-27T01:06:04.709668+00:00"}],"events":[],"event_summary":{},"paper_claims":[],"inbound_citations":{"count":0,"internal_anchor_count":0,"sample":[]},"formal_canon":{"evidence_count":0,"sample":[],"anchors":[]},"links":{"html":"https://pith.science/pith/H2YNUBZAY7CBFO4MCEFZVI4T3V","json":"https://pith.science/pith/H2YNUBZAY7CBFO4MCEFZVI4T3V.json","graph_json":"https://pith.science/api/pith-number/H2YNUBZAY7CBFO4MCEFZVI4T3V/graph.json","events_json":"https://pith.science/api/pith-number/H2YNUBZAY7CBFO4MCEFZVI4T3V/events.json","paper":"https://pith.science/paper/H2YNUBZA"},"agent_actions":{"view_html":"https://pith.science/pith/H2YNUBZAY7CBFO4MCEFZVI4T3V","download_json":"https://pith.science/pith/H2YNUBZAY7CBFO4MCEFZVI4T3V.json","view_paper":"https://pith.science/paper/H2YNUBZA","resolve_alias":"https://pith.science/api/pith-number/resolve?arxiv=2605.26665&json=true","fetch_graph":"https://pith.science/api/pith-number/H2YNUBZAY7CBFO4MCEFZVI4T3V/graph.json","fetch_events":"https://pith.science/api/pith-number/H2YNUBZAY7CBFO4MCEFZVI4T3V/events.json","actions":{"anchor_timestamp":"https://pith.science/pith/H2YNUBZAY7CBFO4MCEFZVI4T3V/action/timestamp_anchor","attest_storage":"https://pith.science/pith/H2YNUBZAY7CBFO4MCEFZVI4T3V/action/storage_attestation","attest_author":"https://pith.science/pith/H2YNUBZAY7CBFO4MCEFZVI4T3V/action/author_attestation","sign_citation":"https://pith.science/pith/H2YNUBZAY7CBFO4MCEFZVI4T3V/action/citation_signature","submit_replication":"https://pith.science/pith/H2YNUBZAY7CBFO4MCEFZVI4T3V/action/replication_record"}},"created_at":"2026-05-27T01:06:04.709668+00:00","updated_at":"2026-05-27T01:06:04.709668+00:00"}