Description
Bachelor’s or Master’s thesis in cooperation with Fraunhofer AISEC
Automated Program Repair of Software Bugs in C/C++ Projects
Large-scale fuzzing is a widely used software testing technique to uncover (security) bugs
in C/C++ projects. Fuzzing tools automatically generate inputs to trigger crashes, which
serve as evidence of bugs. However, they provide limited information and after a crash is
found, further steps are required: root cause analysis (RCA) to understand the underlying
issue and, ultimately, bug fixing.
Task Description
Fraunhofer AISEC has developed a tool for RCA that disects a fuzzing crash and locates
the underlying issue. In this work, the tooling shall be extended to also provide bug fixing
capabilities. Steps to be undertaken include the analysis of the current state of the art
for automated bug fixing with a focus on recent LLM-based approaches, and the imple-
mentation of a prototype that automatically generates a fix for a given crash based on the
root cause identified by the existing RCA tool. The goal of this thesis is to advance the
automation of software bug repair in C/C++ projects.
Requirements
• High motivation and ability to work independently
• Basic knowledge of C/C++ programming
• Basic knowledge of Python programming
Contact
Please send your application with current CV and transcript of records to:
Vincent Ahlrichs
Fraunhofer Institute for Applied and Integrated Security (AISEC)
Secure Operating Systems
Lichtenbergstr. 11, 85748 Garching near Munich
Mail: vincent.ahlrichs@aisec.fraunhofer.de
Publication Date: 21.07.2025
|
Thesis topic in co-operation with the Fraunhofer Institute for Applied and Integrated Security AISEC, Garching