-
This exploit write-up features #musl 1.1.24, whose oldmalloc (dlmalloc-like) was used to convert the exploitable bug in the application into an arbitrary write primitive.
musl 1.2.1 or later, with mallocng, would probably have rendered this non-exploitable or would have at least required non-malloc-based approaches to exploiting the initial application bug.
-
Came across this again while reviewing some code in #musl iconv: the standard legacy encoding for Korean, EUC-KR/CP949, is grossly underdocumented. Unlike a most other CJK encodings, Wikipedia has basically no information on the actual encoding structure, and WHATWG chooses to specify it as an arbitrary table completely disregarding the structure.
So, a little thread on it, so it's written down somewhere. Maybe someday someone will write a proper article.
🧵 1/N
-