|
|
|
|
|
|
by scarybeast
3320 days ago
|
|
|
This is true. But in the case where the malloc heap metadata is under attack, the attacker will usually just allocate exactly the right size to ensure that the off-by-one goes off the end of the chunk, instead of into slack space. |
|
|