Wannes Rombouts
Wannes Rombouts
Corrupted metadata due to bugs/exploitation. Which is when you would want to use villoc to see what is going on and how you could exploit the heap. On 05/16/2015 12:21...
Both cases occur. It's possible to corrupt the data in order to control the result of the next malloc for example, when done incorrectly (or caused by a bug) this...
It's the same with `malloc()`, if the attacker has control over the fastbin datastructures it's possible to trigger a segfault during `malloc` when it removes the chosen chunk from the...
A discussion about the exploitability of `malloc` crashes is a little out of scope here. But this is an example of an (uncontroled) crash inside `malloc()` for reference: ``` C...
No rush :) I'm busy as well.
Just an update, I do have a quickfix on my branch. but everything is very messy over there because I changed a couple things very quickly because I needed it...
Looks good! Assuming this doesn't break anything it will be welcome, thanks! I'll test it ASAP.
Thanks for the feedback @danghvu, good to know _someone_ is working on this. I'dd certainly like to take a look / help if its published somewhere. So lets wait for...
Thanks for the feature, I, for one, am interested in this. More architectures would definitely be a plus. Another feature I can think of is to have it behave in...
As an example, the following program produces wrong output: ``` C #include int main(int argc, char **argv) { (void) argc, (void) argv; void *a; int i; for (i = 0;...