|
|
|
|
|
|
by bradtgmurray
6139 days ago
|
|
|
Perhaps their allocator only allocated and free'd memory in 4-byte aligned blocks, and would mask out the lower bits to make pointers align to those blocks before freeing them? If you had an allocator like this, you could use the addresses 0 through 3, and presumably the deallocator would mask these all down to zero, and then do a check to make sure it doesn't free 0, and end up doing nothing. |
|
|